I feel like there have been more kubernetes hate going around recently. Have I been living under a rock and missed some major change around docker, docker compose and docker swarm that gives doubt to using kubernetes?
As long as you protect that password store with a sufficiently strong password that you store in a password manager that has a sufficiently strong password :P
I joke but yes some sort of password store is what you would use but make sure that password store needs something like a yubikey with a strong private key on it _
The problem is how many random characters can you remember in your head?
A good encryption key would be around 32 characters to form a 256 bit encryption key.
You can do a fun game of encrypt the encryption key with a password but that's just another vulnerability in the chain.
I recommend getting a PGP key stored on a yubikey and then encrypt all your notes with it since it's all in markdown, I store my notes on Google drive and keep them decrypted in memory so that I can still use Obsidian.
Some form of compute with a recurring job that checks for a DNS address or domain.
Choose a domain that needs to be regularly paid for as a target.
Reason I would choose something you pay for as the trigger is because not paying a bill after your death is one thing that will be actioned on no matter what.
If you can work with Kubernetes then there is plenty of demand running servers and orchestrating service deployment.