I use pass to manage such things separately. This allows to script around hard-c... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		shoeffner 9 months ago \| parent \| context \| favorite \| on: Show HN: Lnk – Git-native dotfiles manager I use pass to manage such things separately. This allows to script around hard-coded secrets: `export MY_TOKEN="$(pass token \| head -n 1)"`

lillecarl 9 months ago [–]

I take care to wrap my commands in functions that export only for that scope. If you have exported variables in your bashrc it'll be shared with everything you spawn through your shell, including evil NPM packages.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact