{"id":"iam-never-embed-access-keys-in-code","text":"AWS best practice: never embed access keys directly in application code — use SDK credential providers or known credential file locations instead.","truth_value":"IN","source":"entries/2026/03/08/iam-users.md","source_url":"","source_hash":"ed2c44ed4fdf607d","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"iam-never-embed-access-keys-in-code","truth_value":"IN","reason":"premise"}]}}