Organization secrets store credentials used during workspace provisioning — private repo access, container registry auth, and AI agent API keys.
Accessing secrets
- Navigate to your organization in the sidebar
- Click Secrets in the org’s quick links
Available secrets
| Secret | Purpose |
|---|
| GitHub Token | Access private repositories during workspace creation |
| DockerHub Username | Authenticate with DockerHub for container images |
| DockerHub Token | DockerHub authentication token |
| Claude API Key | API key for Claude Code in workspaces |
| Claude OAuth Token | OAuth token for Claude Code authentication |
Set a secret
- Find the secret you want to configure
- Enter the value in the inline password input
- Click Set
The value is encrypted and stored at the organization level.
Delete a secret
- Find the configured secret
- Click Delete
- The secret is removed immediately
Deleting a secret may affect running workspaces that depend on it. New workspaces created after deletion won’t have access to the removed credential.
How secrets are used
Secrets are injected during workspace provisioning:
- GitHub Token — clones private repos during workspace setup
- DockerHub credentials — pulls private container images without rate limiting
- Claude API Key / OAuth Token — configures Claude Code inside workspaces so agents can authenticate automatically
