secret should be stored in an environment variable, rather than a flag

[domanchi]

It looks like the CLI offers the ability to pass in a secret with the -s flag. However, it will probably be more secure to pass it in via environment variables, so your secrets don't end up in logs, bash history, etc.

Here's an example: domanchi/localtunnel-server@0a3524a

[jmather]

Totally agreed, I have only made it part way into "making it work at all" and haven't gotten to "making it work right" just yet. It should come from an env variable or a config file ideally. I just already had an established pattern for pushing data in via the flags so I used the easy button for getting it in for now.

Thanks for the suggestion, it's cool to know someone has looked at this :)