A European enterprise has developed a serverless web application hosted on AWS. The application comprises Amazon API Gateway, various AWS Lambda functions, Amazon S3, and an Amazon RDS for MySQL database. The source code consists of AWS Serverless Application Model (AWS SAM) templates and Python code and is stored in GitHub. The enterprise's security team recently performed a security audit and discovered that user names and passwords for authentication to the database are hardcoded within GitHub repositories. The DevOps Engineer must implement a solution with the following requirements: - Automatically detect and prevent hardcoded secrets. - Automatic secrets rotation should also be implemented. What is the MOST secure solution that meets these requirements?