• placebo@lemmy.zip
    link
    fedilink
    English
    arrow-up
    14
    ·
    edit-2
    11 hours ago

    As well as storing production credentials in plain text in an .env file.

    • The_Decryptor@aussie.zone
      link
      fedilink
      English
      arrow-up
      2
      ·
      5 hours ago

      .env files are wild to me, environment variables have never been a good way to pass data to applications, let alone secret data.

      So the solution people came up with was to store them in plain text next to the binary, and then have a loader apply them before running the main app.