Components

Sealed Secrets

GitOps-friendly secret encryption component for Runtime delivery workflows.

Agentic Friendly

Component Category

Continuous integration and delivery / secret management

Component Description

Sealed Secrets is a Kubernetes tool that encrypts secrets so they can be stored safely in Git and decrypted only inside the target cluster.

Why It Is Used

In BullSequana AI Runtime, Sealed Secrets supports a GitOps-friendly way of handling sensitive values during deployment. It allows encrypted secrets to travel through source control and delivery pipelines without exposing the raw secret material outside the cluster.

Learn More

Interacts With

  • Argo CD, because encrypted secrets are typically reconciled as part of the GitOps deployment flow.
  • GitLab, where the encrypted manifests can be versioned and reviewed safely.
  • Reflector, in environments where decrypted secrets then need controlled propagation across namespaces.

Reflector

Resource reflection component for sharing secrets and configuration across namespaces.

Keycloak

Identity and access management component for Runtime authentication and component SSO enrollment.

On this page

Component CategoryComponent DescriptionWhy It Is UsedLearn MoreInteracts With