Although, I’m struggling to get around the 1kb size limit for workers secrets! I’m currently trying to access Google endpoints using a JWT. I’ve been unable to get the service account JSON file into the secrets.
You can use a KV for it and use the Secres as the key to namespace and key, so it should be a long random string for the key.
KVs are stored encrypted too, so in terms of security it should be the similar to Secrets, with one key difference though, it’s possible to view the KV contents inside of the CF Workers panel. So be careful who has access to it. Same goes with listing keys, that’s why the namespace and key have to be un-guessable.