The lab has very sensitive data and we don't want lab members to write their password in files that could be found (we recently had an incident where a student pushed a VPN username and password on github).

So: we should have a section on the onboarding that explicitly says to not write username and password in plain text (even in local laptops), and use password manager platforms (eg: Apple's keychain, google password)