this post was submitted on 27 Jun 2023
9 points (100.0% liked)

Python

6337 readers
16 users here now

Welcome to the Python community on the programming.dev Lemmy instance!

๐Ÿ“… Events

PastNovember 2023

October 2023

July 2023

August 2023

September 2023

๐Ÿ Python project:
๐Ÿ’“ Python Community:
โœจ Python Ecosystem:
๐ŸŒŒ Fediverse
Communities
Projects
Feeds

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 1 points 1 year ago (1 children)

Definitely don't include passwords in git.

Using a password manager is best.

If you are using secrets when developing you can load secrets into environment variables automatically when you run a program: https://developer.1password.com/docs/cli/secrets-environment-variables/

[โ€“] [email protected] 2 points 1 year ago

I concur, which is why I was a bit surprised by this section of yadm's webpage:

It can be useful to manage confidential files, like SSH keys, across multiple systems. However, doing so would put plain text data into a Git repository, which often resides on a public system. yadm implements a feature which can make it easy to encrypt and decrypt a set of files so the encrypted version can be maintained in the Git repository.

(emphasis mine)

Source: https://yadm.io/docs/encryption