I'm in the process of writing a security document for one of our client, and they want some details on how Connect encrypt the environment variables?
The documentation in the admin guide is light:
User-specified environment variables for applications are encrypted on-disk and in-memory. They are decrypted only when a process is about to be started.
Is there any other place I can find more information about how these env var are encrypted and secured?