Secrets Management

One practical note before we move on: never put API keys or passwords in files that AI can read.

Claude Code reads your project files. If you put secrets in .env, they end up in conversation history. Instead:

Environment variables in your shell profile — add to ~/.zshrc so they're available as $VAR_NAME without Claude seeing the value
Secrets manager — tools like secret-lover store secrets in the macOS Keychain with Touch ID protection
.secrets.json — a file that tells Claude what secrets exist without exposing values

This is a habit worth building now, before it matters.

Sketch Before You Prompt

Disconnect exercise

~5minNo AI

Before your next prompting session, sketch your project on paper. Draw boxes for sections, arrows for flow, labels for what goes where. No AI, no screen — just paper and pen.

What did you notice about your own thinking when you had to sketch without AI? Did the sketch change what you ended up prompting for?

Saved locally in your browser.

Chapter 5 of 5

← Your CLAUDE.md The Vibe Coding Workflow →