Secure your secrets at runtime with the 1Password CLI and Environments

1password logo
1Password
Feb 19, 2026
1Password

Stop storing secrets in.env files.

In this video, we show you how to use 1Password Environments to securely inject environment variables at runtime without storing plaintext on disk.

You'll see how the same 1Password Environment powers:

  • Local development using op run --environment
  • A Node.js server receiving runtime secrets
  • Secure user authentication for access
  • Headless servers using Service Account tokens
  • CI/CD and remote automation workflows
  • Real-time updates that keep dev and staging in sync

1Password Environments provide secure, read-only access to environment variables across development and production workflows.

Key benefits: No plaintext secrets on disk Least-privilege access controls Secure runtime injection Works with CLI, SDKs, and service accounts Reliable automation across macOS and Linux

Learn more:
https://1password.com/blog/programmatically-read-environments-sdks-desktop

Copyright © 2026 OpsMatters™. All rights reserved.