Option to use password protected SSH, or atleast not store HTTPS version in plaintext in config.yml