The config file currently contains a secret and should be handled this way - Optional ways to exclude credentials from this file would be better to allow for a more secure file handling and come in handy to version it.