oplets you manage 1Password from the command-line. (…) Its killer features is theop runsubcommand, which can dynamically inject secrets from your 1Password vault into your application’s environment. Instead of storing sensitive values directly in your.envfile, you reference them using specialop://URLs.
Smart. Replacing secrets by references also means that backups are easier. I also wonder if we could define a URL scheme for keychain items URL instead of op to fetch secrets. 💻
