Deal with config files


A very common usecase is to have a config file that holds all your passwords and API keys to be used by your app and of course this file should not be stored on a public Github repo. But unfortunately it’s only possible to deploy public repos on, and it does not seem possible to manually add a file in the local execution directory.
Hence, what are the best practices to add a config file containing sensitive information ?

It seems to be discussed here, and will soon be supported