The Secrets plugin allows you to store and manage secrets in an encrypted file.
There are some benefits to storing secrets this way, instead of the conventional approach of storing them as plaintext in the .env file.
- Secrets are encrypted and cannot be revealed without the encryption key.
- The encrypted file can be committed to your repository, meaning you avoid having to send secrets in plaintext to other developers. You also end up with a history of changes to the file.
- If secrets change or are rotated then there is only one file that needs to be updated.