External Secrets

External Secrets Operator (ESO) is a Kubernetes operator that synchronizes secrets from external secret management systems (AWS Secrets Manager, HashiCorp Vault, Azure Key Vault, GCP Secret Manager) into Kubernetes Secrets. This enables applications to consume secrets through the standard Kubernetes Secret API while the actual secret material is managed centrally with rotation, auditing, and access control in a dedicated secrets management platform.