Integration with 3rd party secret management tool as part of the CI/CD pipeline - problem validation

Problem Statement

Users need secure passwords/tokens, and an additional layer of security is to automatically rotate credentials so that if any were leaked, they'd be ineffective soon enough anyway.

We currently don't have a way to add credential rotation / dynamic secrets / secret variables to our CI/CD pipelines.

One solution may be, to integrate with Vault.

See issues:

#7569 (closed)
#20306 (closed)

Reach

Impact

Confidence

Effort

Edited Oct 24, 2019 by Orit Golowinski