stemedb/docs/demo/vulnbank/config/.env.example

# VulnBank Environment Configuration
# DO NOT USE IN PRODUCTION - Contains security vulnerabilities for testing

# BLOCK: Hardcoded production secrets in example file
DATABASE_URL=postgresql://admin:production_password_123@db.vulnbank.com:5432/vulnbank
REDIS_URL=redis://:redis_secret_password@cache.vulnbank.com:6379

# BLOCK: API keys committed to repository
STRIPE_SECRET_KEY=sk_live_51H7xyz123456789abcdefghijklmnop
SENDGRID_API_KEY=SG.abcdefghijklmnopqrstuvwxyz123456789
AWS_ACCESS_KEY_ID=AKIAIOSFODNN7EXAMPLE
AWS_SECRET_ACCESS_KEY=wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY

# BLOCK: JWT secret in environment file
JWT_SECRET=my_super_secret_jwt_signing_key_12345

# Encryption keys (should never be in version control)
ENCRYPTION_KEY=0123456789abcdef0123456789abcdef

# OAuth credentials
GOOGLE_CLIENT_SECRET=GOCSPX-abcdefghijklmnopqrstuvwxyz
GITHUB_CLIENT_SECRET=ghp_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx