n8n-io
diff --git a/‎packages/cli/src/__tests__/workflow-execute-additional-data.test.ts
Lines changed: 4 additions & 4 deletions b/‎packages/cli/src/__tests__/workflow-execute-additional-data.test.ts
Lines changed: 4 additions & 4 deletions
diff --git a/‎packages/cli/src/commands/base-command.ts
Lines changed: 2 additions & 0 deletions b/‎packages/cli/src/commands/base-command.ts
Lines changed: 2 additions & 0 deletions
diff --git a/‎packages/cli/src/controllers/oauth/__tests__/oauth1-credential.controller.test.ts
Lines changed: 2 additions & 3 deletions b/‎packages/cli/src/controllers/oauth/__tests__/oauth1-credential.controller.test.ts
Lines changed: 2 additions & 3 deletions
diff --git a/‎packages/cli/src/controllers/oauth/__tests__/oauth2-credential.controller.test.ts
Lines changed: 2 additions & 3 deletions b/‎packages/cli/src/controllers/oauth/__tests__/oauth2-credential.controller.test.ts
Lines changed: 2 additions & 3 deletions
diff --git a/‎packages/cli/src/credentials-helper.ts
Lines changed: 0 additions & 2 deletions b/‎packages/cli/src/credentials-helper.ts
Lines changed: 0 additions & 2 deletions
diff --git a/‎packages/cli/src/eventbus/message-event-bus-destination/message-event-bus-destination-webhook.ee.ts
Lines changed: 2 additions & 2 deletions b/‎packages/cli/src/eventbus/message-event-bus-destination/message-event-bus-destination-webhook.ee.ts
Lines changed: 2 additions & 2 deletions
diff --git a/‎packages/cli/src/external-secrets.ee/__tests__/external-secrets-manager.ee.test.ts
Lines changed: 2 additions & 2 deletions b/‎packages/cli/src/external-secrets.ee/__tests__/external-secrets-manager.ee.test.ts
Lines changed: 2 additions & 2 deletions
diff --git a/‎packages/cli/src/external-secrets.ee/external-secrets-manager.ee.ts
Lines changed: 5 additions & 5 deletions b/‎packages/cli/src/external-secrets.ee/external-secrets-manager.ee.ts
Lines changed: 5 additions & 5 deletions
diff --git a/‎packages/cli/src/scaling/__tests__/job-processor.service.test.ts
Lines changed: 2 additions & 2 deletions b/‎packages/cli/src/scaling/__tests__/job-processor.service.test.ts
Lines changed: 2 additions & 2 deletions
diff --git a/‎packages/cli/src/secrets-helpers.ee.ts
Lines changed: 0 additions & 42 deletions b/‎packages/cli/src/secrets-helpers.ee.ts
Lines changed: 0 additions & 42 deletions
diff --git a/‎packages/cli/src/workflow-execute-additional-data.ts
Lines changed: 2 additions & 3 deletions b/‎packages/cli/src/workflow-execute-additional-data.ts
Lines changed: 2 additions & 3 deletions
diff --git a/‎packages/cli/test/integration/active-workflow-manager.test.ts
Lines changed: 2 additions & 3 deletions b/‎packages/cli/test/integration/active-workflow-manager.test.ts
Lines changed: 2 additions & 3 deletions
diff --git a/‎packages/core/src/execution-engine/__tests__/execution-lifecycle-hooks.test.ts
Lines changed: 5 additions & 3 deletions b/‎packages/core/src/execution-engine/__tests__/execution-lifecycle-hooks.test.ts
Lines changed: 5 additions & 3 deletions
@@ -4,6 +4,7 @@ import { ExecutionRepository } from '@n8n/db';
 import { WorkflowRepository } from '@n8n/db';
 import { Container } from '@n8n/di';
 import { mock } from 'jest-mock-extended';
+import { ExternalSecretsProxy } from 'n8n-core';
 import type { IWorkflowBase } from 'n8n-workflow';
 import type {
 	IExecuteWorkflowInfo,
@@ -23,7 +24,6 @@ import {
 	SubworkflowPolicyChecker,
 } from '@/executions/pre-execution-checks';
 import { ExternalHooks } from '@/external-hooks';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 import { UrlService } from '@/services/url.service';
 import { WorkflowStatisticsService } from '@/services/workflow-statistics.service';
 import { Telemetry } from '@/telemetry';
@@ -86,12 +86,12 @@ describe('WorkflowExecuteAdditionalData', () => {
 	const variablesService = mockInstance(VariablesService);
 	variablesService.getAllCached.mockResolvedValue([]);
 	const credentialsHelper = mockInstance(CredentialsHelper);
-	const secretsHelper = mockInstance(SecretsHelper);
+	const externalSecretsProxy = mockInstance(ExternalSecretsProxy);
 	const eventService = mockInstance(EventService);
 	mockInstance(ExternalHooks);
 	Container.set(VariablesService, variablesService);
 	Container.set(CredentialsHelper, credentialsHelper);
-	Container.set(SecretsHelper, secretsHelper);
+	Container.set(ExternalSecretsProxy, externalSecretsProxy);
 	const executionRepository = mockInstance(ExecutionRepository);
 	mockInstance(Telemetry);
 	const workflowRepository = mockInstance(WorkflowRepository);
@@ -306,7 +306,7 @@ describe('WorkflowExecuteAdditionalData', () => {
 				userId: undefined,
 				setExecutionStatus: expect.any(Function),
 				variables: mockVariables,
-				secretsHelpers: secretsHelper,
+				externalSecretsProxy,
 				startRunnerTask: expect.any(Function),
 				logAiEvent: expect.any(Function),
 			});
 
@@ -11,6 +11,7 @@ import {
 	ObjectStoreService,
 	DataDeduplicationService,
 	ErrorReporter,
+	ExternalSecretsProxy,
 } from 'n8n-core';
 import { ensureError, sleep, UserError } from 'n8n-workflow';
 
@@ -278,6 +279,7 @@ export abstract class BaseCommand extends Command {
 	async initExternalSecrets() {
 		const secretsManager = Container.get(ExternalSecretsManager);
 		await secretsManager.init();
+		Container.get(ExternalSecretsProxy).setManager(secretsManager);
 	}
 
 	initWorkflowHistory() {
 
@@ -6,7 +6,7 @@ import { Container } from '@n8n/di';
 import Csrf from 'csrf';
 import type { Response } from 'express';
 import { captor, mock } from 'jest-mock-extended';
-import { Cipher, type InstanceSettings } from 'n8n-core';
+import { Cipher, type InstanceSettings, ExternalSecretsProxy } from 'n8n-core';
 import type { IWorkflowExecuteAdditionalData } from 'n8n-workflow';
 import nock from 'nock';
 
@@ -19,7 +19,6 @@ import { BadRequestError } from '@/errors/response-errors/bad-request.error';
 import { NotFoundError } from '@/errors/response-errors/not-found.error';
 import { ExternalHooks } from '@/external-hooks';
 import type { OAuthRequest } from '@/requests';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 import * as WorkflowExecuteAdditionalData from '@/workflow-execute-additional-data';
 import { mockInstance } from '@test/mocking';
 
@@ -28,7 +27,7 @@ jest.mock('@/workflow-execute-additional-data');
 describe('OAuth1CredentialController', () => {
 	mockInstance(Logger);
 	mockInstance(ExternalHooks);
-	mockInstance(SecretsHelper);
+	mockInstance(ExternalSecretsProxy);
 	mockInstance(VariablesService, {
 		getAllCached: async () => [],
 	});
 
@@ -6,7 +6,7 @@ import { Container } from '@n8n/di';
 import Csrf from 'csrf';
 import { type Response } from 'express';
 import { captor, mock } from 'jest-mock-extended';
-import { Cipher, type InstanceSettings } from 'n8n-core';
+import { Cipher, type InstanceSettings, ExternalSecretsProxy } from 'n8n-core';
 import type { IWorkflowExecuteAdditionalData } from 'n8n-workflow';
 import nock from 'nock';
 
@@ -19,15 +19,14 @@ import { BadRequestError } from '@/errors/response-errors/bad-request.error';
 import { NotFoundError } from '@/errors/response-errors/not-found.error';
 import { ExternalHooks } from '@/external-hooks';
 import type { OAuthRequest } from '@/requests';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 import * as WorkflowExecuteAdditionalData from '@/workflow-execute-additional-data';
 import { mockInstance } from '@test/mocking';
 
 jest.mock('@/workflow-execute-additional-data');
 
 describe('OAuth2CredentialController', () => {
 	mockInstance(Logger);
-	mockInstance(SecretsHelper);
+	mockInstance(ExternalSecretsProxy);
 	mockInstance(VariablesService, {
 		getAllCached: async () => [],
 	});
 
@@ -327,8 +327,6 @@ export class CredentialsHelper extends ICredentialsHelper {
 			return decryptedDataOriginal;
 		}
 
-		await additionalData?.secretsHelpers?.waitForInit();
-
 		return await this.applyDefaultsAndOverwrites(
 			additionalData,
 			decryptedDataOriginal,
 
@@ -4,6 +4,7 @@ import { Container } from '@n8n/di';
 import axios from 'axios';
 import type { AxiosRequestConfig, Method } from 'axios';
 import { Agent as HTTPSAgent } from 'https';
+import { ExternalSecretsProxy } from 'n8n-core';
 import { jsonParse, MessageEventBusDestinationTypeNames } from 'n8n-workflow';
 import type {
 	MessageEventBusDestinationOptions,
@@ -14,7 +15,6 @@ import type {
 } from 'n8n-workflow';
 
 import { CredentialsHelper } from '@/credentials-helper';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 
 import { MessageEventBusDestination } from './message-event-bus-destination.ee';
 import { eventMessageGenericDestinationTestEvent } from '../event-message-classes/event-message-generic';
@@ -103,7 +103,7 @@ export class MessageEventBusDestinationWebhook
 		if (foundCredential) {
 			const credentialsDecrypted = await this.credentialsHelper?.getDecrypted(
 				{
-					secretsHelpers: Container.get(SecretsHelper),
+					externalSecretsProxy: Container.get(ExternalSecretsProxy),
 				} as unknown as IWorkflowExecuteAdditionalData,
 				foundCredential[1],
 				foundCredential[0],
 
@@ -352,10 +352,10 @@ describe('External Secrets Manager', () => {
 			expect(manager.getSecretNames('dummy')).toEqual(['test1', 'test2']);
 		});
 
-		test('should return undefined when provider does not exist', async () => {
+		test('should return an empty array when provider does not exist', async () => {
 			await manager.init();
 
-			expect(manager.getSecretNames('nonexistent')).toBeUndefined();
+			expect(manager.getSecretNames('nonexistent')).toBeEmptyArray();
 		});
 	});
 
 
@@ -2,7 +2,7 @@ import { Logger } from '@n8n/backend-common';
 import { SettingsRepository } from '@n8n/db';
 import { OnPubSubEvent, OnShutdown } from '@n8n/decorators';
 import { Service } from '@n8n/di';
-import { Cipher } from 'n8n-core';
+import { Cipher, type IExternalSecretsManager } from 'n8n-core';
 import { jsonParse, type IDataObject, ensureError, UnexpectedError } from 'n8n-workflow';
 
 import { EventService } from '@/events/event.service';
@@ -19,7 +19,7 @@ import { ExternalSecretsConfig } from './external-secrets.config';
 import type { ExternalSecretsSettings, SecretsProvider, SecretsProviderSettings } from './types';
 
 @Service()
-export class ExternalSecretsManager {
+export class ExternalSecretsManager implements IExternalSecretsManager {
 	private providers: Record<string, SecretsProvider> = {};
 
 	private initializingPromise?: Promise<void>;
@@ -211,7 +211,7 @@ export class ExternalSecretsManager {
 		return provider in this.providers;
 	}
 
-	getProviderNames(): string[] | undefined {
+	getProviderNames(): string[] {
 		return Object.keys(this.providers);
 	}
 
@@ -223,8 +223,8 @@ export class ExternalSecretsManager {
 		return this.getProvider(provider)?.hasSecret(name) ?? false;
 	}
 
-	getSecretNames(provider: string): string[] | undefined {
-		return this.getProvider(provider)?.getSecretNames();
+	getSecretNames(provider: string): string[] {
+		return this.getProvider(provider)?.getSecretNames() ?? [];
 	}
 
 	getAllSecretNames(): Record<string, string[]> {
 
@@ -3,6 +3,7 @@ import type { IExecutionResponse } from '@n8n/db';
 import type { ExecutionRepository } from '@n8n/db';
 import { mock } from 'jest-mock-extended';
 import type { WorkflowExecute as ActualWorkflowExecute } from 'n8n-core';
+import { ExternalSecretsProxy } from 'n8n-core';
 import { mockInstance } from 'n8n-core/test/utils';
 import type { IPinData, ITaskData, IWorkflowExecuteAdditionalData } from 'n8n-workflow';
 import { Workflow, type IRunExecutionData, type WorkflowExecuteMode } from 'n8n-workflow';
@@ -11,7 +12,6 @@ import { CredentialsHelper } from '@/credentials-helper';
 import { VariablesService } from '@/environments.ee/variables/variables.service.ee';
 import { ExternalHooks } from '@/external-hooks';
 import type { ManualExecutionService } from '@/manual-execution.service';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 import { WorkflowStatisticsService } from '@/services/workflow-statistics.service';
 import * as WorkflowExecuteAdditionalData from '@/workflow-execute-additional-data';
 import { WorkflowStaticDataService } from '@/workflows/workflow-static-data.service';
@@ -23,7 +23,7 @@ mockInstance(VariablesService, {
 	getAllCached: jest.fn().mockResolvedValue([]),
 });
 mockInstance(CredentialsHelper);
-mockInstance(SecretsHelper);
+mockInstance(ExternalSecretsProxy);
 mockInstance(WorkflowStaticDataService);
 mockInstance(WorkflowStatisticsService);
 mockInstance(ExternalHooks);
 
@@ -7,7 +7,7 @@ import { Logger } from '@n8n/backend-common';
 import { GlobalConfig } from '@n8n/config';
 import { ExecutionRepository, WorkflowRepository } from '@n8n/db';
 import { Container } from '@n8n/di';
-import { WorkflowExecute } from 'n8n-core';
+import { ExternalSecretsProxy, WorkflowExecute } from 'n8n-core';
 import { UnexpectedError, Workflow } from 'n8n-workflow';
 import type {
 	IDataObject,
@@ -46,7 +46,6 @@ import {
 import type { UpdateExecutionPayload } from '@/interfaces';
 import { NodeTypes } from '@/node-types';
 import { Push } from '@/push';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 import { UrlService } from '@/services/url.service';
 import { TaskRequester } from '@/task-runners/task-managers/task-requester';
 import { findSubworkflowStart } from '@/utils';
@@ -388,7 +387,7 @@ export async function getBase(
 		userId,
 		setExecutionStatus,
 		variables,
-		secretsHelpers: Container.get(SecretsHelper),
+		externalSecretsProxy: Container.get(ExternalSecretsProxy),
 		async startRunnerTask(
 			additionalData: IWorkflowExecuteAdditionalData,
 			jobType: string,
 
@@ -2,7 +2,7 @@ import type { WebhookEntity } from '@n8n/db';
 import { WorkflowRepository } from '@n8n/db';
 import { Container } from '@n8n/di';
 import { mock } from 'jest-mock-extended';
-import { InstanceSettings } from 'n8n-core';
+import { InstanceSettings, ExternalSecretsProxy } from 'n8n-core';
 import { FormTrigger } from 'n8n-nodes-base/nodes/Form/FormTrigger.node';
 import { ScheduleTrigger } from 'n8n-nodes-base/nodes/Schedule/ScheduleTrigger.node';
 import { NodeApiError, Workflow } from 'n8n-workflow';
@@ -19,7 +19,6 @@ import { ExecutionService } from '@/executions/execution.service';
 import { ExternalHooks } from '@/external-hooks';
 import { NodeTypes } from '@/node-types';
 import { Push } from '@/push';
-import { SecretsHelper } from '@/secrets-helpers.ee';
 import * as WebhookHelpers from '@/webhooks/webhook-helpers';
 import { WebhookService } from '@/webhooks/webhook.service';
 import * as AdditionalData from '@/workflow-execute-additional-data';
@@ -33,7 +32,7 @@ import { mockInstance } from '../shared/mocking';
 
 mockInstance(ActiveExecutions);
 mockInstance(Push);
-mockInstance(SecretsHelper);
+mockInstance(ExternalSecretsProxy);
 mockInstance(ExecutionService);
 mockInstance(WorkflowService);
 
 
@@ -13,7 +13,7 @@ import type {
 
 import type {
 	ExecutionLifecycleHookName,
-	ExecutionLifecyleHookHandlers,
+	ExecutionLifecycleHookHandlers,
 } from '../execution-lifecycle-hooks';
 import { ExecutionLifecycleHooks } from '../execution-lifecycle-hooks';
 
@@ -46,12 +46,14 @@ describe('ExecutionLifecycleHooks', () => {
 	describe('addHandler()', () => {
 		const hooksHandlers =
 			mock<{
-				[K in keyof ExecutionLifecyleHookHandlers]: ExecutionLifecyleHookHandlers[K][number];
+				[K in keyof ExecutionLifecycleHookHandlers]: ExecutionLifecycleHookHandlers[K][number];
 			}>();
 
 		const testCases: Array<{
 			hook: ExecutionLifecycleHookName;
-			args: Parameters<ExecutionLifecyleHookHandlers[keyof ExecutionLifecyleHookHandlers][number]>;
+			args: Parameters<
+				ExecutionLifecycleHookHandlers[keyof ExecutionLifecycleHookHandlers][number]
+			>;
 		}> = [
 			{ hook: 'nodeExecuteBefore', args: ['testNode', mock<ITaskStartedData>()] },
 			{
Original file line number	Diff line number	Diff line change
`@@ -327,8 +327,6 @@ export class CredentialsHelper extends ICredentialsHelper {`
`327`	`327`	`return decryptedDataOriginal;`
`328`	`328`	`}`
`329`	`329`
`330`		`- await additionalData?.secretsHelpers?.waitForInit();`
`331`		`-`
`332`	`330`	`return await this.applyDefaultsAndOverwrites(`
`333`	`331`	`additionalData,`
`334`	`332`	`decryptedDataOriginal,`