From bddebbe3cbe028ab57ed3ecaf1291f0334d55289 Mon Sep 17 00:00:00 2001
From: David Almeida <davidalmeidac@proton.me>
Date: Wed, 6 May 2026 15:22:17 -0500
Subject: [PATCH] Add sealed-env to Configuration

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index d3ebb8e4..db636dd3 100644
--- a/README.md
+++ b/README.md
@@ -283,6 +283,7 @@ _Libraries that provide external configuration._
 - [KAConf](https://github.com/mariomac/kaconf) - Annotation-based configuration system for Java and Kotlin.
 - [microconfig](https://microconfig.io) - Configuration system designed for microservices which helps to separate configuration from code. The configuration for different services can have common and specific parts and can be dynamically distributed.
 - [owner](https://github.com/lviggiano/owner) - Reduces boilerplate of properties.
+- [sealed-env](https://github.com/davidalmeidac/sealed-env) - Cross-stack (Java + Node.js) library for encrypted .env files at rest, with optional TOTP-bound unsealing for production deploys. Spring Boot Starter included. Public threat model.
 
 ### Constraint Satisfaction Problem Solver