Context
RustCloud covers AWS security via IAM (identity) and KMS (key management)
but has no support for AWS Secrets Manager — the service for storing and
retrieving application secrets (API keys, passwords, tokens).
This completes the AWS security category: IAM controls who can access what,
KMS encrypts keys, Secrets Manager stores the actual secret values.
Operations to implement
| Function |
Description |
create_secret |
Store a new plaintext or binary secret |
get_secret |
Retrieve secret string or binary by name/ARN |
update_secret |
Rotate or update a secret's value |
delete_secret |
Schedule deletion (with optional recovery window) |
list_secrets |
List all secrets in the account |
Acceptance criteria
Files
rustcloud/src/aws/aws_apis/security/aws_secrets_manager.rs ← newrustcloud/src/tests/aws_secrets_manager_operations.rs ← newexamples/aws/security/secrets_manager.md ← newrustcloud/Cargo.toml ← add deprustcloud/src/main.rs ← wire modulerustcloud/src/tests/mod.rs ← wire testsREADME.md ← update Security row
Context
RustCloud covers AWS security via IAM (identity) and KMS (key management)
but has no support for AWS Secrets Manager — the service for storing and
retrieving application secrets (API keys, passwords, tokens).
This completes the AWS security category: IAM controls who can access what,
KMS encrypts keys, Secrets Manager stores the actual secret values.
Operations to implement
create_secretget_secretupdate_secretdelete_secretlist_secretsAcceptance criteria
aws-sdk-secretsmanageradded toCargo.tomlmain.rsandtests/mod.rsexamples/aws/security/secrets_manager.mdFiles
rustcloud/src/aws/aws_apis/security/aws_secrets_manager.rs← newrustcloud/src/tests/aws_secrets_manager_operations.rs← newexamples/aws/security/secrets_manager.md← newrustcloud/Cargo.toml← add deprustcloud/src/main.rs← wire modulerustcloud/src/tests/mod.rs← wire testsREADME.md← update Security row