lacework-global-787
Consider external secret storage (Manual)
Description
If you require more complex secret management, consider the use of an external secrets storage and management system instead of using Kubernetes Secrets directly.
Ensure the solution requires authentication to access secrets, has auditing of access to and use of secrets, and encrypts secrets. Some solutions also make it easier to rotate secrets.
Remediation
Refer to the secrets management options offered by the cloud service provider or a third-party secrets management solution.
References
https://kubernetes.io/docs/concepts/configuration/secret/
https://cloud.google.com/secret-manager/docs/overview