https://blogs.joshuaantony.com/tags/secrets-management/Recent content in Secrets-Management on Joshua Antony | Tech BlogHugoen-usSat, 11 Apr 2026 00:00:00 +0000https://blogs.joshuaantony.com/posts/monolith-vs-microservices-secrets-exposure/Sat, 11 Apr 2026 00:00:00 +0000https://blogs.joshuaantony.com/posts/monolith-vs-microservices-secrets-exposure/In the ATG monolith, production DB credentials lived behind a JBoss SSH gate — effectively unreachable without infra access. After modernizing to microservices on Azure Kubernetes, every developer’s Azure account could read prod DB, Redis, and Service Bus secrets from Key Vault with a single CLI command. VPN and device whitelisting gated the network path, but not the humans. The migration didn’t just change our architecture — it quietly widened the insider blast radius.