Use a random-generated secret key stored in either the environment variables or in a file in the app directory instead of hard-coding.