This talk will focus on how to securely manage sensitive values, such as secrets, passwords and keys, early on (shift left) in Terraform code. We will explore options how to tackle this and avoid the most common pitfalls we have observed at The Scale Factory while working with our clients. Using available mechanisms in the latest Terraform release I will also demo how we can better handle sensitive values in our infrastructure definitions.