H.6 — Rotate BETTER_AUTH_SECRET on local machines
What's wrong
Local .env files contain a real-looking 32-byte hex secret. It was never committed (verified — .env is gitignored), so this is purely hygiene.
How to fix
On each contributor's machine:
Replace the value of BETTER_AUTH_SECRET in your local .env with the output. Each deployed environment (staging, production) should already have its own value, distinct from any developer's local.
Files
- Each developer's local
.env
Severity
L.
Acceptance
H.6 — Rotate
BETTER_AUTH_SECRETon local machinesWhat's wrong
Local
.envfiles contain a real-looking 32-byte hex secret. It was never committed (verified —.envis gitignored), so this is purely hygiene.How to fix
On each contributor's machine:
Replace the value of
BETTER_AUTH_SECRETin your local.envwith the output. Each deployed environment (staging, production) should already have its own value, distinct from any developer's local.Files
.envSeverity
L.
Acceptance