13 · Environments & Packaging

.env / Secrets

Config and keys kept out of code

A file holding settings and secret keys (passwords, API keys), kept out of git, that the app reads when it runs.

Concrete example

Your OpenAI key lives in a .env file, never written directly in the code.

Why it matters

The standard way to keep secrets out of your codebase and off GitHub.