My colleague developed software which allows application team members to run a pipeline with some secret variables, and then those variables are encrypted and stored in git using a AES key tied to that central account.
Once the key is stored, then there is configuration and rules how to set those secrets within Hashicorp Vault instances running across teams and many environments (several EKS clusters), by running a sync script from the central account.
I think the main motivation is not to rely on k8s persistent storage, as well as offering a way to roll out secrets and have central management.
My question is, do other people do this sort of thing?
Many thanks,