+1 I think the proposal should state that clearly - that it should prefer the most secure way of handling credentials for the platform (with the obvious example of the keychain on macOS), and that .netrc is a fallback for those cases (platforms) where there is not a clear solution. of course, we would need to debate the details of that per platform, but IMO that is an implementation detail that goes beyond the proposal which is setting the tone conceptually.
4 Likes