SKILL-076 Security, testing, and operations Locked skill

Secrets and environment config

Config is per-environment and lives in the environment — never in the repo. If a required secret is missing, refuse to boot.

Unlock download Unlock downloads

What this skill helps you build

Read secrets from the environment at runtime, keep them out of the repo, and fail fast when a required variable is missing.

The production takeaway

Config is per-environment and lives in the environment — never in the repo. If a required secret is missing, refuse to boot.

Inside this skill

The full skill expands these implementation areas with decisions, edge cases, prompts, tests, and framework-specific code.

Security, testing, and operations

What this helps you build

A configuration setup where every secret — database URLs, API keys, signing salts — is read from the environment at runtime , never baked into the repository or a compiled artifact

🔒

Security, testing, and operations

When to use this

Use this the moment your app needs any value that differs between machines or must stay private. In practice that is almost immediately: A database connection string that differs l

🔒

Security, testing, and operations

The core idea

Configuration is read from the environment at runtime , not written into the repository at build time. The code names the variables it needs; the values come from outside — a local

🔒

Unlock the full implementation

Paid access includes the complete skill body, implementation prompt, common mistakes, production checklist, and code examples where this skill includes them.

Unlock all skills — $199 Browse the library