## Executive Summary Enable customers to securely store and manage secrets natively within GitLab, reducing reliance on third-party tools and eliminating insecure practices like storing secrets in CI variables. ## Delivery goals Our GA capability will include: - **Ability to create/edit/delete a secret.** - **Inject secret into CI Job** - **Limit secret application to environment/branch.** - **Provide rotation reminders** - **Provide ability to give CRUD permissions to designated roles/groups/specific users at the project level.** - **Support for static secrets only.** - **Proper backend encryption for secrets at rest.** - **Segregation for multi-tenant to ensure privacy.** - **Project-level application of a secret.** - [**Basic audit events**](https://docs.gitlab.com/user/compliance/audit_event_types/#secrets-management) - **Group-level secret storage - (net new)** - **Support for GitLab.com, Self-Managed (helm), and Dedicated (GA - net new)** - Packaging: [**Fulfillment Requirements Pending**](https://gitlab.com/gitlab-org/gitlab/-/work_items/589097) - (net new) Out of scope: * Set an expiration for a secret. * Automatic secret rotation (manual rotation reminders only) * Dynamic secrets (only static secrets supported) * Instance-level secrets * Runtime secrets with External Secret Operator * Secret versioning/history (roadmap item for post-GA) * Advanced audit logging (basic audit events included, advanced features post-GA) * Self-managed (omnibus) ## Timeline & Milestones * **Closed Beta Launch: FY26Q4 (March 2026)** * **GA Target: FY27Q2 (May 2026)** ## Target Metrics and Success Criteria * GA Success Targets (3 months post-launch) - in review * Business and Product * Convert 4 beta customers into adopting at GA * NPS \> 20 among beta participants * Performance and Quality Metrics * Availability: 99.5% * Error rate: * Latency: ## Acceptance Criteria ### Feature completeness * All delivery goals implemented and tested :hourglass_flowing_sand: * Packaging restrictions enforced correctly :hourglass_flowing_sand: * Performance benchmarks established :hourglass_flowing_sand: ### Security and compliance * Threat model complete :hourglass_flowing_sand: * Penetration testing passed with no critical findings :hourglass_flowing_sand: ### Operational readiness * Monitoring and alerts configured :hourglass_flowing_sand: * Runbooks for on-call established :hourglass_flowing_sand: * Support team readiness complete :hourglass_flowing_sand: ## GTM and Packaging * In refinement ## Rollout strategy * In refinement https://gitlab.com/groups/gitlab-org/-/work_items/20758+ * Dependent on Fulfillment Planning #### Dependencies - Epic/Issue dependencies: - https://gitlab.com/groups/gitlab-org/-/epics/16319+, which targets ~"FY26::Q4" - Team dependencies: - Infrastructure - Delivery (Build, Framework) - https://gitlab.com/groups/gitlab-org/-/epics/10723#note_2620755523 - Dedicated - https://gitlab.com/gitlab-org/gitlab/-/issues/473893#note_2658239854 - Geo - https://gitlab.com/gitlab-org/gitlab/-/issues/485595 - External dependencies (groups out of Engineering): - Infrastructure - Infra Sec - Pricing - Support Team dependencies all fall under `Platform + Infrastructure`. See https://gitlab.com/groups/gitlab-org/-/epics/10723#note_2631180758. #### DRIs - **PM**: @jrandazzo - **EM**: @mmishaev - **UX/PDM**: @jtouchstone1 - **Group(s)**: ~"group::pipeline security" - **Engineering Owner**: @mmishaev ### Hygiene Guidelines :bulb: \_See additional details about this process at https://handbook.gitlab.com/handbook/product-development/r-and-d-interlock/ ##### :one: Pre-Interlock - [x] Update epic description with all relevant information - [x] Ensure all dependencies are identified - [x] Apply appropriate labels (see below) - [x] Apply target delivery Milestone - [x] Update interlock status as discussions progress (via label) ##### :two: Post-Interlock: once quarter begins - Update health status weekly (via label) - Document any newly identified risks or dependencies - Link to implementation epics/issues as work begins - Flag any scope or timeline changes immediately