this post was submitted on 27 Jun 2023
10 points (100.0% liked)

Python

6413 readers
3 users here now

Welcome to the Python community on the programming.dev Lemmy instance!

πŸ“… Events

PastNovember 2023

October 2023

July 2023

August 2023

September 2023

🐍 Python project:
πŸ’“ Python Community:
✨ Python Ecosystem:
🌌 Fediverse
Communities
Projects
Feeds

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] jim 2 points 1 year ago (1 children)

Do y'all use git to store sensitive data like passwords, even encrypted? This does not sit well with me. At work, we use a vault. For personal use, I use a password manager and manually copy and paste those envs.

[–] uthredii 1 points 1 year ago (1 children)

Definitely don't include passwords in git.

Using a password manager is best.

If you are using secrets when developing you can load secrets into environment variables automatically when you run a program: https://developer.1password.com/docs/cli/secrets-environment-variables/

[–] jim 2 points 1 year ago

I concur, which is why I was a bit surprised by this section of yadm's webpage:

It can be useful to manage confidential files, like SSH keys, across multiple systems. However, doing so would put plain text data into a Git repository, which often resides on a public system. yadm implements a feature which can make it easy to encrypt and decrypt a set of files so the encrypted version can be maintained in the Git repository.

(emphasis mine)

Source: https://yadm.io/docs/encryption