There’s a security advisory up for using envPrefix. If you manage your secrets correctly and only build in release mode wherever secrets are located then you can keep using it, but the recommended approach to avoid leaking secrets is to define them individually. Note that