#782 HIGH: Secret cache TTL too long at 1 hour

SecretManager uses 1-hour TTL for secret cache. If a secret is rotated in Vault, workflows use stale credentials for up to 1 hour. For airport operations, compromised API keys remain in use. Location: engine/services/secret_manager.py:293-294. Fix: Reduce TTL to 300 seconds.