You can always .env file to keep those credentials away from git and if there is a pipeline in your build process you can use those parameters as pipeline parameters.