Which TWO practices help prevent hardcoded credentials in application code? (Choose TWO.)
Vault dynamically provides secrets without hardcoding.
Why this answer
Using environment variables (from .env or secret managers) and using a dedicated secrets management tool like Vault are best practices. Committing .env files exposes secrets.