Which secret management tools does this skill support?

It supports a wide range of tools including HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, Google Secret Manager, and native CI/CD variables in GitHub and GitLab.

How can I prevent secrets from being committed to Git?

The skill includes best practices and configuration scripts for secret scanning tools like TruffleHog and GitGuardian to be used as pre-commit hooks.

Does this skill help with secret rotation?

Yes, it provides implementation patterns for both automated rotation using cloud-native functions (like AWS Lambda) and manual rotation workflows.

Can this skill help with Kubernetes security?

Yes, it includes specific patterns for using the External Secrets Operator to securely sync secrets from external providers into Kubernetes clusters.

Secrets Management

Name: Secrets Management
Author: Microck

byMicrock

•

108

Security & Testing

Implements secure protocols for managing sensitive credentials, keys, and certificates across CI/CD pipelines and cloud environments.

About

This skill provides specialized guidance for implementing robust secrets management practices to protect sensitive data like API keys, database passwords, and TLS certificates. It covers industry-standard tools including HashiCorp Vault, AWS Secrets Manager, and platform-native solutions for GitHub and GitLab. By incorporating this skill, developers can automate secret rotation, enforce least-privilege access, and set up proactive secret scanning to ensure that credentials are never hardcoded or exposed in version control.

Key Features

HashiCorp Vault integration and configuration patterns
Multi-cloud support for AWS, Azure, and GCP Secrets Managers
CI/CD pipeline security for GitHub Actions and GitLab CI
Automated secret rotation and lifecycle management
Secret scanning implementation using tools like TruffleHog
108 GitHub stars

Use Cases

Configuring automated rotation for cloud-native API keys and tokens
Implementing pre-commit hooks to prevent sensitive data leaks
Securing production database credentials in Kubernetes using External Secrets

About

Key Features

HashiCorp Vault integration and configuration patterns
Multi-cloud support for AWS, Azure, and GCP Secrets Managers
CI/CD pipeline security for GitHub Actions and GitLab CI
Automated secret rotation and lifecycle management
Secret scanning implementation using tools like TruffleHog
108 GitHub stars

Use Cases

Configuring automated rotation for cloud-native API keys and tokens
Implementing pre-commit hooks to prevent sensitive data leaks
Securing production database credentials in Kubernetes using External Secrets