Skip to main content
Secrets are encrypted credentials stored in your account that Neo agents can access during task execution. Use them to provide API keys, tokens, passwords, and other sensitive values without exposing them in task prompts or project context. Secrets are accessible from the key icon in the left sidebar or under Settings → Secrets.

Adding a secret

Click + Add Another to add a new secret. Each secret has a name (used as the environment variable key) and a value. The value is masked after saving and never displayed in full again.

Always on

Each secret has an Always on toggle. When enabled, the secret is automatically attached to every task you run without needing to select it manually. When disabled, you can still attach the secret to specific tasks or automations by selecting it at task creation time.

Using secrets in tasks

When starting a task, click Secrets in the task bar to select which secrets to make available for that run. Any secrets with Always on enabled are pre-selected automatically. Secrets are available to agents as environment variables using the name you assigned. For example, a secret named GITHUB_TOKEN is accessible as $GITHUB_TOKEN inside the sandbox.

Using secrets in automations

When creating an automation, select secrets from the Secrets field in the Configuration section. The selected secrets are injected into every scheduled run of that automation.

Managing secrets

To delete a secret, click the trash icon next to it. Deletion is immediate and cannot be undone. Any tasks or automations that relied on that secret will lose access to it on their next run.