[drinchev]

How do you guys, handle this problem?

I use either `git-crypt` [1] or `ansible-vault` [2].

1: https://github.com/AGWA/git-crypt

2: http://docs.ansible.com/ansible/playbooks_vault.html

[tildedash]

I follow the 12 factor app methodology (https://12factor.net/), everything in ENV.

[aequitas]

For puppet users: https://github.com/TomPoulton/hiera-eyaml

Advantage of this approach is it encrypts the values individually instead of per file. This way the secrets files are git/review friendly.

[adamors]

Dotenv and Ansible vault, depending on the project. I also want to look into Hashicorp's Vault https://www.vaultproject.io

[FanaHOVA]

ENV variables. I use `dotenv` in Ruby projects.

[reitanqild]

And it actually uses GPG : )

[StavrosK]

Yep, same here. I prefer git-crypt, but we use Ansible vault too.

[dekz]

.env or ENV with AWS KMS