diff --git a/app/e11sync/settings.py b/app/e11sync/settings.py
index c8cd693..adf6143 100644
--- a/app/e11sync/settings.py
+++ b/app/e11sync/settings.py
@@ -21,7 +21,7 @@ if secret_path := environ.get("E11SYNC_SECRET_KEY_PATH"):
         _SECRET_KEY = f.read().strip()
         secret_key_msg = "SECRET_KEY read from {}".format(secret_path)
 else:
-    _SECRET_KEY = 'django-insecure-$e2!=equ(efm0e%f9&t+xjtz0)$*$@pw%rnjdqcl8f@5o5hw!l'
+    _SECRET_KEY = 'django-insecure-$e2!=indeed'
     secret_key_msg = "SECRET_KEY is insecure"
 
 # otherwise it gets printed twice
@@ -97,21 +97,13 @@ DATABASES = {
     }
 }
 
-AUTH_PASSWORD_VALIDATORS = [
-    {
-        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
-    },
-    {
-        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
-    },
-    {
-        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
-    },
-    {
-        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
-    },
+_password_validators = [
+    'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
+    'django.contrib.auth.password_validation.MinimumLengthValidator',
+    'django.contrib.auth.password_validation.CommonPasswordValidator',
+    'django.contrib.auth.password_validation.NumericPasswordValidator',
 ]
-
+AUTH_PASSWORD_VALIDATORS = [{'NAME': v} for v in _password_validators]
 
 LANGUAGE_CODE = 'en-us'
 
diff --git a/flake.nix b/flake.nix
index 7f589bc..11ad656 100644
--- a/flake.nix
+++ b/flake.nix
@@ -72,7 +72,6 @@
         };
         format = pkgs.runCommand "check-format" {} ''
           ${pkgs.python3Packages.flake8}/bin/flake8 \
-              --max-line-length 99 \
               --exclude ${./.}/app/signup/migrations/ ${./.}/app
           mkdir -p $out
         '';