GCP Secret Manager secret with automatic rotation disabled

Risk Level

Informational (4)



GCP Secret Manager can store, manage and access secrets, with the appropriate permissions you can view its content. We detected that the secret '{GcpSecretManagerSecret}' is configured without sending rotation messages to Pub/Sub topics, which not recommended since rotating limits determent how long an unauthorized user can use a compromised secret.