Buildship newbie - dynamically change a secret key

I am trying to connect buildship to an external api that requires the access token to get refreshed every sixty minutes. I'd like to store the access token and an expiration date, and if the time is past the expiration date, refresh the token and update the expiration date. My plan is to use the secret manager to store the access token and expiration date, but I can't see a way to dynamically update the secret key every time I refresh the token. Is this possible? Should I use something else besides the secret manager?