Do not use environment variables by default - security issue

[FlipSky]

Please exclude support for environment variables in the templates (the .Env.* insertions according to the documentation). This can expose a lot of unintentional information (just run set in your shell to see what is available).

Preferred behaviour:

1. Change default value of --no-sys-env to true (or rename option).
2. Remove all support for system environments and only accept definitions from --env, --json or --load.

Simple work around is to add --no-sys-env parameter.

[subchen]

This will bring to backward compatibility problems, need update in next major version release.