Secrets are pieces of private information used to authenticate and authorize access to protected resources or sensitive information. Common types of secrets include:
- Privileged account credentials
- SSH keys
- API keys
- Encryption keys
Incomplete visibility of where secrets are stored, hardcoded or embedded credentials, third-party vendor accounts, and manual processes all create risks around secrets management.