Interactive Demo

See how configuration drift is detected and blocked before deployment.

This is a simulated demo stack.

Imagine this is your production stack.

View staging stack

Key	Value	Secret
NODE_ENV	production	No
API_URL	https://api.example.com	No
DATABASE_URL	••••••••	Yes
LOG_LEVEL	info	No
FEATURE_X	true	No
LEGACY_API_KEY	••••••••	Yes

Now compare this against its contract and baseline…

HIGHRisk score: 7

High risk means missing required keys or secret misclassification.

Missing required:JWT_SECRET

Disallowed keys:LEGACY_API_KEY

Suggested fixes

HIGH

Add required key: JWT_SECRET

Required by contract but missing in the environment.

WARN

Restore key: JWT_SECRET

Present in snapshot but missing in current stack.

INFO

Allow key via prefix: LEGACY_API_KEY

Add allowed prefix (e.g. LEGACY_) in Stack Contract.

INFO

Add to optional keys: LEGACY_API_KEY

Add this key to optional keys in Stack Contract.

WARN

Remove disallowed key: LEGACY_API_KEY

Key is not in contract; remove it from the environment.

Stack Doctor — HIGH severity issue(s)

$ configstack doctor --env production
Running Stack Doctor (baseline)…
Missing required keys: JWT_SECRET
Disallowed keys: LEGACY_API_KEY
Result: HIGH (risk score: 7)
CI failed: fix issues above or update baseline.

This would fail your CI pipeline.

Run this on your own stack

Prevent configuration drift in your own project.

Prevent configuration drift in your own project Create your first Stack

Stop sending .env files. Enforce configuration integrity.

Create free account View pricing

AES-256-GCM encryptionCI enforcement supportPro: automated drift detection

Explore the full demo

Click around the dashboard, stacks, and Stack Doctor — no login required.

Demo

All Projects

Manage your config projects