How to protect a string (secret key) in my env file in node.js project?

I have a node.js project which implement in nest.js framework. there is some apiKey and secretKey in my env file, I want to protect these keys from anyone, even host administrator. so I compile my entire project with pkg module to a binary file but it is possible to decompile my file and extract my strings.

maybe encryption can help me but the decrypt private key must be store somewhere!

please tell me how to keep these strings safe ?

Few thoughts: just encrypt the keys and ask for master password when the keys are used or hash passwords and check for the correct hash when passwords is used.