Security
Security
Best practices when using Coyaml:
- Keep secrets in environment variables; avoid committing secrets to YAML
- Use
.envonly for local development; prefer real env in CI/production - Treat
file:templates as trusted inputs; avoid reading untrusted paths - Avoid printing full configs with secrets in logs
- If you need stricter controls, restrict base directories for
file:andyaml:includes at your app level