: Even if a file is found, strong passwords (at least 12 characters, mixing letters, numbers, and symbols) are much harder to brute-force if they are hashed.

Section D — Risk assessment & policy (15 points, 3 + 6 + 6)

Draft an for compromised credentials

Store database passwords and API keys in secure system environment variables rather than hardcoding them into public scripts or configuration files.

Deliverables for instructor