How to store secrets using HashiCorp vault in test automation?

Hello All, I’m currently working as an Automation engineer and I have come across a scenarios where I’ve hardcoded the Personal Access token in config.properties file and using that to access some API’s within our organisation. So, the security operations team in my company has reached out to me and asked me to remove the hard coded tokens from the GitHub repository and asked to use hashicorp vault for managing secrets as it’s a company standard.

I’m currently trying to find out some resources if something like this has already been implemented in test automation but unfortunately couldn’t find one.

Meanwhile I’ve asked my security team If I can use base64 encoding or git-crypt in order to manage secrets but it was a big NO…

Any help regarding this would be highly appreciated.

Thanks in advance!

3 Likes