README: add secret management policy note
This commit is contained in:
parent
ece754e107
commit
c6641200da
1 changed files with 6 additions and 0 deletions
|
|
@ -24,3 +24,9 @@ Secrets are managed via HashiCorp Vault at `https://vault.nexus.local`.
|
||||||
- bash >= 5.0
|
- bash >= 5.0
|
||||||
- curl, rsync, awscli v2
|
- curl, rsync, awscli v2
|
||||||
- Vault CLI (for secret retrieval)
|
- Vault CLI (for secret retrieval)
|
||||||
|
|
||||||
|
## Secret management
|
||||||
|
|
||||||
|
Use the company Vault at `https://vault.nexus.local` for all secrets.
|
||||||
|
**Never commit credentials to version control.**
|
||||||
|
See `lib/vault.sh` for runtime secret retrieval.
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue