@bearByte I'm a bit old, but a CFP that didn't get up I had was busting up security tools by targeting their secrets management. As a solid gold example, Hashicorp products use a file backed token for access. The hashi response is just use a TPM and then they literally back it with nothing and so no one does it, making all their products vulnerable to just routine theft of creds. Pile into that for tonnes of fun.