How can we improve WHMCS?

In terms of security, having the ability to rotate out the CC Encryption key for all encrypted data within WHMCS would be extremely useful and beneficial.

Even if it's a function in the WHMCS classes like WHMCS\Encrpytion\Rotate($newKey) - that goes through all the encrypted database fields - unencrypts them and re-encrypts them with the new new key.

It would also be nice to be able to integrate with an external encryption service / key management service to store the CC Encrpytion hash so that it is not just stored in plain text in the configuration file.