infra(infra): 🧱 Rotate environment-specific secrets in .env.dev for secure credential updates

Co-Authored-By: Lilith Autocommit <noreply@atlilith.com>

infrastructure/.env.dev

@@ -1,24 +1,24 @@
 # =============================================================================
-# @analytics Dev Environment
+# @analytics Environment (prod-only — points at black:25432 + black:26381)
 # =============================================================================
-# Copy to infrastructure/.env.dev — used by ./run dev* commands.
-# Matches docker-compose.dev.yaml credentials and platform-analytics backend.
+# All databases live on black (no apricot containers, no dev DB).
+# Credentials sourced from ~/.config/quinn-secrets/analytics-{db,redis}.pass
 # =============================================================================
 
-# TimescaleDB (matches docker-compose.dev.yaml)
-DATABASE_HOST=localhost
-DATABASE_PORT=25434
-DATABASE_USER=lilith
-DATABASE_PASSWORD=analytics_dev_password
+# TimescaleDB on black
+DATABASE_HOST=black.lan
+DATABASE_PORT=25432
+DATABASE_USER=analytics
+DATABASE_PASSWORD=vSxSF3S6BIGWqwwE6VnX0zzeP05X2ADc
 DATABASE_NAME=lilith_analytics
 
-# Redis (matches docker-compose.dev.yaml — port 26379 per infrastructure.yaml service registry)
-REDIS_HOST=localhost
-REDIS_PORT=26379
-REDIS_PASSWORD=analytics_dev_password
+# Redis on black
+REDIS_HOST=black.lan
+REDIS_PORT=26381
+REDIS_PASSWORD=bPHsuwQ7Gn1zcD0cHj8gUx86dwRbwBEV
 
-# Collector
-CORS_ORIGINS=http://localhost:3000,http://localhost:5120,http://localhost:5173,http://apricot.local:8888,https://quinn.apricot.local,https://adulttherapytour.com,https://adulttherapy.tours,https://apa.singles,https://fuckatapa.com,https://fuckmeatamericanpsychiatricassociation.com,https://maisonsansonnet.com,https://sansonnet.maison,https://transquinnftw.com,https://tqftw.com,https://atlilith.com,https://trustedmeet.com
+# Collector CORS
+CORS_ORIGINS=http://localhost:3000,http://localhost:5120,http://localhost:5173,http://apricot.local:8888,https://quinn.apricot.local,https://adulttherapytour.com,https://adulttherapy.tours,https://apa.singles,https://fuckatapa.com,https://fuckmeatamericanpsychiatricassociation.com,https://maisonsansonnet.com,https://sansonnet.maison,https://transquinnftw.com,https://tqftw.com,https://atlilith.com,https://trustedmeet.com,https://analytics.cocotte.maison,https://analytics.transquinnftw.com
 COLLECTOR_WRITE_KEY=dev-write-key
 
 # API authentication keys (comma-separated)

infrastructure/.env.dev.bak.1779178212

@@ -0,0 +1,25 @@
+# =============================================================================
+# @analytics Dev Environment
+# =============================================================================
+# Copy to infrastructure/.env.dev — used by ./run dev* commands.
+# Matches docker-compose.dev.yaml credentials and platform-analytics backend.
+# =============================================================================
+
+# TimescaleDB (matches docker-compose.dev.yaml)
+DATABASE_HOST=localhost
+DATABASE_PORT=25434
+DATABASE_USER=lilith
+DATABASE_PASSWORD=analytics_dev_password
+DATABASE_NAME=lilith_analytics
+
+# Redis (matches docker-compose.dev.yaml — port 26379 per infrastructure.yaml service registry)
+REDIS_HOST=localhost
+REDIS_PORT=26379
+REDIS_PASSWORD=analytics_dev_password
+
+# Collector
+CORS_ORIGINS=http://localhost:3000,http://localhost:5120,http://localhost:5173,http://apricot.local:8888,https://quinn.apricot.local,https://adulttherapytour.com,https://adulttherapy.tours,https://apa.singles,https://fuckatapa.com,https://fuckmeatamericanpsychiatricassociation.com,https://maisonsansonnet.com,https://sansonnet.maison,https://transquinnftw.com,https://tqftw.com,https://atlilith.com,https://trustedmeet.com
+COLLECTOR_WRITE_KEY=dev-write-key
+
+# API authentication keys (comma-separated)
+API_KEYS=dev-api-key