Kubernetes External Secrets allows you to use external secretmanagement systems, like [AWS Secrets Manager](https://aws.amazon.com/secrets-manager/) or[HashiCorp Vault](https://www.vaultproject.io/), to securely add secrets inKubernetes. Read more about the design and motivation for KubernetesExternal Secrets on the [GoDaddy EngineeringBlog](https://godaddy.github.io/2019/04/16/kubernetes-external-secrets/).## How it worksThe project extends the Kubernetes API by adding a `ExternalSecrets` object using [Custom Resource Definition](https://kubernetes.io/docs/concepts/extend-kubernetes/api-extension/custom-resources/) and a controller to implement the behavior of the object itself.An `ExternalSecret` declares how to fetch the secret data, while the controller converts all `ExternalSecrets` to `Secrets`.The conversion is completely transparent to `Pods` that can access `Secrets` normally.