Follow up on Secrets Manager blueprint with ADRs
The following discussion from !133181 (merged) should be addressed:
-
@grzesiek started a discussion: (+1 comment) Great content @alberts-gitlab!
I left a few suggestions.
In two follow-up merge requests we could add three ADRs (see an example here: GitLab CI Events ADR 001: Use hierarchical events (!132129 - merged)):
- ADR on using envelope encryption.
- ADR on using GCP-hosted Hardware Security Module solution.
- ADR on NOT using personal access tokens to retrieve secrets.
I suggest we add those after we merge this MR.