Skip to main content
Inject secrets securely into environments so agents can do real work without exposing sensitive values.

Adding secrets

  1. Go to Settings > Secrets
  2. Click “Add secret”
  3. Enter name and value
  4. Select which repos can access it

Using secrets

Secrets are injected at runtime into the environment so agents can use them without exposing values directly.

Security

  • Secrets are encrypted at rest
  • Secrets are injected at runtime (not stored in images)
  • Agents cannot read secret values directly — only use them
  • Audit log tracks secret access