I was wondering if anyone has any techniques for hiding the activation-keys in backups?

I backup the kickstart files on my httpd server to gitlab, and manually edit the boot parameters in grub to kickstart. I would like to not have my activation-keys/org IDs in gitlab.

Instead of a basic httpd server, I could do wsgi, and script it, but wondering what my other options might be.