this post was submitted on 14 Jul 2026
922 points (98.9% liked)
Programmer Humor
32303 readers
1885 users here now
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
Rules
- Keep content in english
- No advertisements
- Posts must be related to programming or programmer topics
founded 3 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
As well as storing production credentials in plain text in an
.envfile..envfiles are wild to me, environment variables have never been a good way to pass data to applications, let alone secret data.So the solution people came up with was to store them in plain text next to the binary, and then have a loader apply them before running the main app.
But they needed those .env files to transplant an entire software stack from the developer's laptop into production in a reproducible manner! How else were they ever going to get software into prod? By good documentation, broad version requirements, and following the Robustness Principle? Ha! How are you supposed to move fast and break things then?
The data isn't supposed to be secret, I think. We use
.envfiles to store creds required for development, like a connection url for my local database. Production apps don't use.envfiles at all.