Organizations should ensure that proper restrictions are set on Secrets within Secrets Manager so that they are not inadvertently exposed. This can be done using inline IAM policies within Secrets Manager. For more information, see the AWS documentation.
References:
https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html
In AWS Console -
In Terraform -
References:
https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/secretsmanager_secret