Explore the critical topic of password and secret management in modern applications during this 28-minute EuroPython Conference talk. Delve into the various types of secrets, including encryption keys, database passwords, and API credentials, and learn about the emerging tools designed to manage, update, and audit these sensitive pieces of information. Discover best practices for avoiding security breaches and protecting your application's crucial data. Gain insights into modeling security properties for different types of secrets, selecting appropriate tools for various situations, and implementing them within major web frameworks. Examine the evolving landscape of threats and learn how to safeguard your application against potential vulnerabilities in an era of config automation and ephemeral microservices.