What do you do with secrets in Git repo driven Docker servers?
So I'm exploring taking my individual Docker compose files and stacks and pushing them out to a Git repo that I can pull from. However I'm unclear what I'm supposed to do with my .env secrets - I know about .gitignore and not pushing them but how do you manage them in this sort of server paradigm? I'm assuming there's some sort of self-hosted third party software that manages it for you but I'm not finding a lot of success in my research. (Not sure if it matters but this is on a Proxmox server.)