Monitor performance issues & errors in your code

How To Keep A Secret in Python Apps

Episode #418, published Fri, Jun 2, 2023, recorded Wed, May 24, 2023

Think about the different APIs and databases your application works with. Every one of them requires either an API key or a database connection string that itself contains a password. How do you let your application access this sensitive information without storing it in source code or putting in other compromising locations? We have Glyph Lefkowitz on the show to share his security fable as well as just good advice for keeping secrets out of Python code.

Watch this episode on YouTube
Play on YouTube
Watch the live stream version

Links from the show

Glyph on Mastodon:
GitHub Security Alerts:
CIA Triad:
XKCD Authorization:
AWS Vault:
Secrets in GitHub Actions:
Python Client for HashiCorp Vault:
Pomodouroboros app:
PEP 541:
Glyph's security talk at PyCon:
Watch this episode on YouTube:
Episode transcripts:

--- Stay in touch with us ---
Subscribe to us on YouTube:
Follow Talk Python on Mastodon: talkpython
Follow Michael on Mastodon: mkennedy

Want to go deeper? Check out our courses

Talk Python's Mastodon Michael Kennedy's Mastodon