feat: Source .env file safely in update script for improved security

2025-11-08 16:54:44 +03:00
parent 7972a31b3f
commit a45eeec12b
1 changed files with 4 additions and 1 deletions
@@ -28,7 +28,10 @@ fi
 # Load DB credentials from .env
 if [ -f .env ]; then
-    export $(grep -v '^#' .env | xargs)
+    # Source .env file safely
    set -a
    source .env
    set +a
    DB_USER=${DB_USERNAME:-amnezia}
    DB_PASS=${DB_PASSWORD:-amnezia}
    DB_ROOT_PASS=${DB_ROOT_PASSWORD:-rootpassword}