Secrets vault

Workspace secrets

Managed secrets are encrypted at rest; env/file/external references are resolved only inside trusted services.

Create or update a secret

Secret nameSource typeExternal referenceRotation hintSecret value

Runtime usage

Reference secrets inside action, agent, or browser inputs with secret://your.secret.name. Webhook triggers can also use a secret name for HMAC verification.

{
  "apiKey": "secret://openai.api_key",
  "webhook": {
    "signatureSecretName": "incoming.github.secret"
  },
  "connector": {
    "authHeader": "Authorization",
    "authSecretRef": "secret://github.token"
  }
}

Stored secrets

No secrets stored yet.