secrets-management (CI/CD)
Secure secrets handling for CI/CD using Vault, AWS Secrets Manager, and native platform stores.
๐ก๏ธ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for secrets-management (CI/CD), derived from its capabilities.
AIVSS 8.0 ยท High
View MAESTRO 7-layer threat model โOverview
An Agent Skill that guides the agent to store, rotate, and inject credentials in CI/CD pipelines without hardcoding. It supplies patterns for HashiCorp Vault, AWS Secrets Manager, least-privilege access, and automatic rotation. The skill body injects config templates the agent applies to pipeline files.
Key features
- Vault and AWS Secrets Manager integration patterns
- Automatic secret rotation guidance
- Least-privilege access enforcement
Use cases
- Securing CI/CD credentials
- Rotating API keys and DB passwords