{"id":"managed-identity-to-keyvault-zero-credential-pipeline","text":"Managed identity combined with Key Vault references creates a zero-credential application pipeline: identity lifecycle is automatic (system-assigned) or shareable (user-assigned), while Key Vault references inject secrets into App Service settings via @Microsoft.KeyVault syntax — no credential ever appears in code, configuration, or environment variables at any stage.","truth_value":"IN","source":"","source_url":"","source_hash":"","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"managed-identity-to-keyvault-zero-credential-pipeline","truth_value":"IN","reason":"premise"}]}}