Using environment variables for secret data like passwords is an anti-pattern as they can easily leak. It's much safer to maintain the data as a file. To prevent accidental commits of the password file, we are adding a `.gitignore` file.