Vault Secrets in Non-Kubernetes CI/CD

Hi folks,

I have a build process where the end result is that a bunch of YAML files with secrets in them are deposited on a machine in our infrastructure. I am trying to use our Vault instance to inject the secrets into the YAML files (written as Vault templates), but am having a hell of a time getting it all to work.

Are there any examples or best practices for injecting Vault secrets into a build process? This is not a Kubernetes setup.

Thanks! Anything you folks have would be appreciated.