[twp]

How do you handle differences between machines? How do you handle secrets? How do you run scripts?

[mixmastamyk]

Scripts check environment to see where they are.

What secrets? I generally don’t copy them, but you could manually. For example I use the same ssh keypair on two machines, but I generally don’t.

[twp]

In my case, I have things like Github Personal Access Tokens stored in my password manager and then use chezmoi's templates to populate them in my dotfiles, for example:

https://github.com/twpayne/dotfiles/blob/master/home/dot_zsh...

This means that: 1. My secrets are safely stored in my password manager so I can share my dotfiles. 2. When I update the secret in my password manager it automatically gets updated in my dotfiles when I run `chezmoi apply`.

[mixmastamyk]

Hmm, I don’t keep any secrets in dot files and have never thought to. Seems simpler that way.

[mixmastamyk]

To clarify, .ssh/* are “dot files” and have a private key but I dont track them in the repo.

[ok_dad]

I have one machine at any time

I store them in Bitwarden not in dotfiles

I… am not sure what that has to do with scripts?