Simply not hard coding your secrets is a good first step. Even better is to think about how you’re going to rotate secrets. So much easier if you build it in from the start than if you need to tack it on later. Once you have secret rotation supported, you can set up mechanisms to do it regularly and you can rest a bit easier at night.