All API keys and DB credentials are stored in modules in another location, and those modules are not under version control. Each script I write does a use lib to include that directory, then I pull in the credential modules that I need.

Never, ever, not even for a minute, should you put any credentials into a script that's under version control.