The values.yaml file contains some sensitive information as part of the installation process. Consider securing the file before storing it anywhere with wider accessibility, such as file share with version control.
The following are the recommendations:
Do not share the file.
You must clear the sensitive information, such as password, from values.yaml after the deployment is complete.
When inputs (password) are sent by using the --set command, it is visible when you run the helm get values <release name> command.
Change all default values in the values.yaml file.