Hi all 👋 I have a question about the docker-compose file and the prisma config. Currently I’m passing a lot of sensitive data (like db username, password, management secret) in docker-compose file. Is there a best practice on how do extract those away into a separate file or usually you guys just exclude it in .gitignore?

Hi, usually you put this data in a file called

.env

This file is unique for every environment and added to the .gitignore You can then reference this file in your docker-compose file https://docs.docker.com/compose/environment-variables/#the-env_file-configuration-option Generally many frameworks already load this file by default, so if you're developing locally you also have this already set up correctly. If you don't use a framework or it doesn't load the .env by default, you can use this package to accomplish that task: https://www.npmjs.com/package/dotenv

Oh yes, that makes sense. Thanks a lot @RafaelKr

No problem, happy to help 🙂