Open nvtaveras opened 1 month ago
hmm, what do you mean exactly? transferring the secrets out into ENV vars accessible by the function? i guess they're no longer as secret then as they're no longer encrypted at rest, no?
i do think we can discuss which things really need to be secret, tho, to be fair. was just erring on the side of secrecy during development but maybe a webhook URL is also ok in an unencrypted env var
pricing wise I don't think we're paying much atm: https://cloud.google.com/secret-manager/pricing
In places like https://github.com/mento-protocol/governance-watchdog/blob/main/src/send-discord-notification.ts#L34, to avoid paying for unnecessary reads from the secret manager