Delete
AWS Secret Manager Plugin – Delete Action
Summary (SEO Meta Description):
The Delete Action of the AWS Secret Manager Plugin permanently removes a secret from AWS Secrets Manager.
Use it to decommission secrets that are no longer required and keep your secret store clean and compliant.
Overview
The Delete Action lets your WeHub workflow safely remove secrets from AWS Secrets Manager.
This is ideal when credentials, keys, or environment secrets are no longer needed and must be retired.
Typical Use Cases:
- Decommissioning secrets for discontinued services
- Cleaning up old or expired credentials during automated maintenance
- Enforcing security compliance by removing unused secrets
- Automating environment teardown in CI/CD pipelines
⚙️ Configuration
| Field | Description | Type / Options |
|---|---|---|
| Label | Custom name for the action | String |
| Select connection | Choose or create a secure AWS connection for Secrets Manager | Connection |
(The secret name to delete is provided via the workflow input payload.)
FAQ
Q: Is deletion permanent?
A: Yes. Deleted secrets cannot be recovered unless you use AWS’s recovery window feature.
Always confirm before running this action.
Q: Can I schedule deletion?
A: If your AWS policy allows, you can configure a recovery window in the payload to delay permanent deletion.
Q: Will WeHub log the secret value?
A: No. WeHub never stores or logs secret contents.
Keywords: WeHub AWS Secret Manager Plugin, Delete Action, Remove Secret, AWS Secrets Manager, Secure Secret Deletion