Description
Secrets can be injected into DevOps commands only when they are needed, reducing the habit of leaving passwords, tokens, or keys in shell scripts. This is useful for deployment, automation, and local workflows that depend on protected credentials.
It is a command-line tool for users who understand their secret provider and process environment. Treat command history, logs, child processes, and terminal sharing carefully because mishandled secrets can still leak.