Secrets Inventory
40 secrets referenced across the platform. No secret values are extracted, only names, types, and which component references them.
Secret Distribution
Secrets per Component
data-science-pipelines-operator
4
llm-d-inference-scheduler
3
model-registry-operator
2
workload-variant-autoscaler
2
Secrets by Component
| Component |
TLS |
Opaque |
Total |
| codeflare-operator |
0 |
1 |
1 |
| data-science-pipelines |
0 |
2 |
2 |
| data-science-pipelines-operator |
0 |
4 |
4 |
| kserve |
0 |
3 |
3 |
| kube-auth-proxy |
0 |
2 |
2 |
| kubeflow |
1 |
1 |
2 |
| kuberay |
0 |
1 |
1 |
| kueue |
0 |
1 |
1 |
| llm-d-inference-scheduler |
0 |
3 |
3 |
| mlflow-operator |
0 |
2 |
2 |
| model-registry |
0 |
3 |
3 |
| model-registry-operator |
0 |
2 |
2 |
| modelmesh-serving |
0 |
1 |
1 |
| models-as-a-service |
1 |
0 |
1 |
| odh-dashboard |
1 |
1 |
2 |
| odh-model-controller |
2 |
0 |
2 |
| opendatahub-operator |
2 |
0 |
2 |
| spark-operator |
0 |
1 |
1 |
| trainer |
0 |
1 |
1 |
| training-operator |
0 |
2 |
2 |
| workload-variant-autoscaler |
0 |
2 |
2 |
Secret Detail
Per-component secret breakdown by name and type.
codeflare-operator (1 secrets)
| Secret |
Type |
| webhook-server-cert |
Opaque |
data-science-pipelines (2 secrets)
| Secret |
Type |
| kfp-api-webhook-cert |
Opaque |
| mlpipeline-minio-artifact |
Opaque |
data-science-pipelines-operator (4 secrets)
| Secret |
Type |
| ds-pipeline-db-test |
Opaque |
| mariadb-certs |
Opaque |
| minio |
Opaque |
| minio-certs |
Opaque |
kserve (3 secrets)
| Secret |
Type |
| kserve-webhook-server-cert |
Opaque |
| llmisvc-webhook-server-cert |
Opaque |
| localmodel-webhook-server-cert |
Opaque |
kube-auth-proxy (2 secrets)
| Secret |
Type |
| kube-auth-proxy-secret |
Opaque |
| kube-rbac-proxy-client-certificates |
Opaque |
kubeflow (2 secrets)
| Secret |
Type |
| odh-notebook-controller-webhook-cert |
kubernetes.io/tls |
| webhook-server-cert |
Opaque |
kuberay (1 secrets)
| Secret |
Type |
| webhook-server-cert |
Opaque |
kueue (1 secrets)
| Secret |
Type |
| webhook-server-cert |
Opaque |
llm-d-inference-scheduler (3 secrets)
| Secret |
Type |
| cacerts |
Opaque |
| istio-kubeconfig |
Opaque |
| istiod-tls |
Opaque |
mlflow-operator (2 secrets)
| Secret |
Type |
| controller-manager-metrics-tls |
Opaque |
| postgres-secret |
Opaque |
model-registry (3 secrets)
| Secret |
Type |
| minio-secret |
Opaque |
| model-catalog-hf-api-key |
Opaque |
| model-catalog-postgres |
Opaque |
model-registry-operator (2 secrets)
| Secret |
Type |
| controller-manager-metrics-service |
Opaque |
| webhook-server-cert |
Opaque |
modelmesh-serving (1 secrets)
| Secret |
Type |
| modelmesh-webhook-server-cert |
Opaque |
models-as-a-service (1 secrets)
| Secret |
Type |
| maas-api-serving-cert |
kubernetes.io/tls |
odh-dashboard (2 secrets)
| Secret |
Type |
| dashboard-proxy-tls |
kubernetes.io/tls |
| webhook-server-cert |
Opaque |
odh-model-controller (2 secrets)
| Secret |
Type |
| model-serving-api-tls |
kubernetes.io/tls |
| odh-model-controller-webhook-cert |
kubernetes.io/tls |
opendatahub-operator (2 secrets)
| Secret |
Type |
| opendatahub-operator-controller-webhook-cert |
kubernetes.io/tls |
| redhat-ods-operator-controller-webhook-cert |
kubernetes.io/tls |
spark-operator (1 secrets)
| Secret |
Type |
| webhook-server-cert |
Opaque |
trainer (1 secrets)
| Secret |
Type |
| kubeflow-trainer-webhook-cert |
Opaque |
training-operator (2 secrets)
| Secret |
Type |
| kubeflow-training-operator-webhook-cert |
Opaque |
| training-operator-webhook-cert |
Opaque |
workload-variant-autoscaler (2 secrets)
| Secret |
Type |
| epp-metrics-token |
Opaque |
| prometheus-client-cert |
Opaque |
Patterns
- Webhook certs are the dominant secret type (25 of 40 secrets).
- kubernetes.io/tls secrets (7) are used for TLS-terminated services.