Reported by esteinfama

Given I have an AWS secret that is being used as a Jenkins credential,
When I soft-delete the secret (mark it as deleted) and it is still in its recovery window,
Then the secret is still seen in Jenkins.

Soft-deleted secrets should be hidden from Jenkins instead, as they are not intended to be used.