Secrets Inventory
45 secrets referenced across the platform. No secret values are extracted, only names, types, and which component references them.
Secret Distribution
Secrets per Component
data-science-pipelines-operator
4
llama-stack-k8s-operator
1
llm-d-inference-scheduler
3
workload-variant-autoscaler
5
Secrets by Component
| Component |
TLS |
Opaque |
Total |
| data-science-pipelines |
0 |
2 |
2 |
| data-science-pipelines-operator |
0 |
4 |
4 |
| distributed-workloads |
0 |
3 |
3 |
| kserve |
0 |
10 |
10 |
| kubeflow |
1 |
1 |
2 |
| kuberay |
0 |
1 |
1 |
| kueue |
0 |
3 |
3 |
| llama-stack-k8s-operator |
0 |
1 |
1 |
| llm-d-inference-scheduler |
0 |
3 |
3 |
| mlflow-operator |
0 |
2 |
2 |
| model-registry |
0 |
3 |
3 |
| modelmesh-serving |
0 |
2 |
2 |
| models-as-a-service |
1 |
0 |
1 |
| spark-operator |
0 |
1 |
1 |
| trainer |
0 |
2 |
2 |
| workload-variant-autoscaler |
0 |
5 |
5 |
Secret Detail
Per-component secret breakdown by name and type.
data-science-pipelines (2 secrets)
| Secret |
Type |
| kfp-api-webhook-cert |
Opaque |
| mlpipeline-minio-artifact |
Opaque |
data-science-pipelines-operator (4 secrets)
| Secret |
Type |
| ds-pipeline-db-test |
Opaque |
| mariadb-certs |
Opaque |
| minio |
Opaque |
| minio-certs |
Opaque |
distributed-workloads (3 secrets)
| Secret |
Type |
| kubeflow-trainer-webhook-cert |
Opaque |
| kueue-webhook-server-cert |
Opaque |
| webhook-server-cert |
Opaque |
kserve (10 secrets)
| Secret |
Type |
| epp-metrics-token |
Opaque |
| hf-token |
Opaque |
| kedaorg-certs |
Opaque |
| kserve-webhook-server-cert |
Opaque |
| llmisvc-webhook-server-cert |
Opaque |
| localmodel-webhook-server-cert |
Opaque |
| opentelemetry-operator-controller-manager-service-cert |
Opaque |
| opentelemetry-operator-metrics |
Opaque |
| prometheus-client-cert |
Opaque |
| webhook-server-cert |
Opaque |
kubeflow (2 secrets)
| Secret |
Type |
| odh-notebook-controller-webhook-cert |
kubernetes.io/tls |
| webhook-server-cert |
Opaque |
kuberay (1 secrets)
| Secret |
Type |
| webhook-server-cert |
Opaque |
kueue (3 secrets)
| Secret |
Type |
| training-operator-v2-webhook-cert |
Opaque |
| training-operator-webhook-cert |
Opaque |
| webhook-server-cert |
Opaque |
llama-stack-k8s-operator (1 secrets)
| Secret |
Type |
| ogx-k8s-operator-webhook-cert |
Opaque |
llm-d-inference-scheduler (3 secrets)
| Secret |
Type |
| cacerts |
Opaque |
| istio-kubeconfig |
Opaque |
| istiod-tls |
Opaque |
mlflow-operator (2 secrets)
| Secret |
Type |
| controller-manager-metrics-tls |
Opaque |
| postgres-secret |
Opaque |
model-registry (3 secrets)
| Secret |
Type |
| minio-secret |
Opaque |
| model-catalog-hf-api-key |
Opaque |
| model-catalog-postgres |
Opaque |
modelmesh-serving (2 secrets)
| Secret |
Type |
| kserve-webhook-server-cert |
Opaque |
| modelmesh-webhook-server-cert |
Opaque |
models-as-a-service (1 secrets)
| Secret |
Type |
| maas-api-serving-cert |
kubernetes.io/tls |
spark-operator (1 secrets)
| Secret |
Type |
| webhook-server-cert |
Opaque |
trainer (2 secrets)
| Secret |
Type |
| kubeflow-trainer-webhook-cert |
Opaque |
| webhook-server-cert |
Opaque |
workload-variant-autoscaler (5 secrets)
| Secret |
Type |
| epp-metrics-token |
Opaque |
| hf-token |
Opaque |
| kedaorg-certs |
Opaque |
| prometheus-client-cert |
Opaque |
| webhook-server-cert |
Opaque |
Patterns
- Webhook certs are the dominant secret type (30 of 45 secrets).
- kubernetes.io/tls secrets (2) are used for TLS-terminated services.