Practise the standard verbs for injecting and rotating secrets with Vault.
0 / 5 completed
1 / 5
Fill in: 'We ___ secrets from Vault at container startup so nothing sensitive ever lands in a static config file.'
We 'inject secrets' — the standard, established collocation for delivering credentials into a running process. The other options aren't the recognised term here.
2 / 5
Fill in: 'A missing Vault policy binding can ___ a service unable to read the very secret it needs to start.'
We say a missing policy will 'leave' a service unable to read — the standard, natural collocation here. The other options aren't idiomatic here.
3 / 5
Fill in: 'We ___ short-lived dynamic credentials instead of static ones so a leaked secret expires quickly on its own.'
We 'issue credentials' — the standard, established Vault collocation for generating time-bound access. The other options aren't the recognised term here.
4 / 5
Fill in: 'We ___ every secret access in Vault's audit log so an unexpected read gets noticed quickly.'
We 'record' an access — the standard, simple collocation for logging an event for later review. The other options are less idiomatic here.
5 / 5
Fill in: 'We ___ a leaked secret immediately, invalidating the old value before it can be misused further.'
We 'revoke a secret' — the standard, established security collocation for invalidating a compromised credential. The other options aren't the recognised term here.