陌讯skills聚合平台

aws-secrets-manager

📁 bagelhole/devops-security-agent-skills 📅 9 days ago
1
总安装量
1
周安装量
#51005
全站排名
安装命令
npx skills add https://github.com/bagelhole/devops-security-agent-skills --skill aws-secrets-manager

Agent 安装分布

opencode 1
codex 1
claude-code 1

Skill 文档

AWS Secrets Manager

Securely store, manage, and rotate secrets in AWS.

When to Use This Skill

Use this skill when:

  • Storing database credentials
  • Managing API keys in AWS
  • Implementing automatic secret rotation
  • Integrating secrets with AWS services

Prerequisites

  • AWS account
  • AWS CLI configured
  • IAM permissions for Secrets Manager

Basic Operations

# Create secret
aws secretsmanager create-secret \
  --name myapp/database \
  --secret-string '{"username":"admin","password":"secret123"}'

# Get secret
aws secretsmanager get-secret-value --secret-id myapp/database

# Update secret
aws secretsmanager put-secret-value \
  --secret-id myapp/database \
  --secret-string '{"username":"admin","password":"newpassword"}'

# Delete secret
aws secretsmanager delete-secret --secret-id myapp/database --recovery-window-in-days 7

Automatic Rotation

# Enable rotation with Lambda
aws secretsmanager rotate-secret \
  --secret-id myapp/database \
  --rotation-lambda-arn arn:aws:lambda:region:account:function:rotation-function \
  --rotation-rules AutomaticallyAfterDays=30

Application Integration

import boto3
import json

def get_secret(secret_name):
    client = boto3.client('secretsmanager')
    response = client.get_secret_value(SecretId=secret_name)
    return json.loads(response['SecretString'])

# Usage
creds = get_secret('myapp/database')
db_connect(creds['username'], creds['password'])

Best Practices

  • Enable automatic rotation
  • Use resource-based policies
  • Enable encryption with KMS
  • Implement least-privilege access
  • Use versioning for rollback

Related Skills

GitHub 仓库 ↗ ← 返回陌讯 Skills 聚合平台
本页面由 陌讯 Skills 聚合平台 收录整理,数据定期更新。