[SECURITY/STABILITY] Move hardcoded secrets and config to environment variables

While exploring the codebase, I noticed that the SECRET_KEY and several S3 configurations are currently hardcoded in app.py and Config.py. This poses a security risk and makes deployment difficult. I have prepared a fix to move these to a .env file using the existing python-dotenv dependency and have created a .env.example template for other developers.