I did try to use default secrets.yml with rails 4.1 on heroku and stuck, because now I have to use ENV variables only, commit secrets.yml to repo and have ENV solution like figaro. Such a smell like I am cooking it wrong.
btw, that is all based on suspenders template which does not instantly works well on Rails 4.1 anymore.
I had the same problem - rails secrets full of heroku ENVs and, without much thinking, switched back to using dotenv which makes it easier to dump/import env variables when using heroku. I’d be happy to hear how others approach this.