dap-secret-webhook is a Kubernetes pod mutating webhook for using CaraML Secrets in Flyte.
When Flyte Secret is used in a Flyte workflow, the created pod that runs the task will be injected with predefined Flyte labels, with the Secret metadata in pod annotations.
DAP Secret Webhook Server will read the Flyte Secret metadata from the annotations and f
On startup, create a MutatingWebhookConfiguration that calls the webhook server for pod create/delete with the predefined Flyte labels
Read the Flyte Secret Metadata and fetch the Secret Data from MLP
Create a k8 Secret resource and mount it as env var to the pod, in an expected format by Flyte Secret Manager