Secrets should always be stored in environment variable
JSON is also bad for storing configuration data : no comments allowed, people almost never provide a JSON schema.
YAML has a different set of problems.
I tend to use TOML or properties files for simple stuff.
Storing secrets in environment variables doesn't improve security.
This article isn't about the differences between JSON/YAML/TOML.
Neither does storing them in JSON/YAML, in terms of security they're mostly the same
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Secrets should always be stored in environment variable
JSON is also bad for storing configuration data : no comments allowed, people almost never provide a JSON schema.
YAML has a different set of problems.
I tend to use TOML or properties files for simple stuff.
Storing secrets in environment variables doesn't improve security.
This article isn't about the differences between JSON/YAML/TOML.
Neither does storing them in JSON/YAML, in terms of security they're mostly the same