How do you handle secrets management and vulnerability scanning within a GitLab CI/CD pipeline at Applied Systems?