Firsty secrets definition:

Secrets Storage Options

Tool Where Used Strengths Weaknesses
GitHub Secrets GitHub CI/CD Easy to use, encrypted Not for runtime apps
AWS Secrets Manager Apps running on AWS Automatic rotation, IAM integration Expensive at scale
AWS SSM Parameter Store AWS Systems Manager Cheaper than Secrets Manager Rotation not native
HashiCorp Vault Enterprise multi-cloud Most secure, dynamic secrets Complex to manage

8. Kubernetes Secrets (Optional but DevOps MUST know)

✔ Stored inside etcd (encrypted with KMS in prod)

✔ Used for:

✔ Mounted as:

🟫 9. Terraform & Secrets — Senior Level Knowledge

Terraform NEVER stores secrets in: