Since it contains tokens (though in general just read permissions of the org and the jenkins), it would be safer if we encrypt it with a passphrase (in case some malicious code gets access to the user's home directory), and perhaps warn if the read permission of it is too generous, similar to how the ssh keys are protected.