Yes that's true but the secrets API isn't really that useful last time I looked. It isn't capable of stopping one app reading the secrets of another, which makes it little different to just a regular file stored in the user's $HOME
im not sure how much access each application has over the entire secret store however it does ask the user before allowing access which is still better than a plain user readable file in home.
