Skip to main content
Secrets are encrypted credentials available as environment variables in your agents. Manage them at agents.pinata.cloud/secrets.
Secret values cannot be viewed after saving. Store credentials securely before adding.

Secrets Vault

The vault has two sections: AI Providers — Quick-access cards for LLM provider keys (ANTHROPIC_API_KEY, OPENAI_API_KEY, OPENROUTER_API_KEY). Shows “Connected” when configured. Variables and Secrets — All other secrets, showing name and which agents use them.

Adding Secrets

Click Add Secret:
OptionDescription
Add secretCreate a single secret
Import .env fileBulk import
Enter a Name (the environment variable name) and Value, then save.

Using Secrets with Agents

During creation: Add secrets in Step 3 (Connect) under “Variables and Secrets”. After deployment: Open the agent’s Secrets section and add from your vault.
New secrets require an agent restart to take effect.

Updating and Deleting

Click the menu on any secret to update or delete.
  • Updated secrets require agent restart
  • Secrets in use by agents cannot be deleted — detach first

Security

  • Encrypted at rest with AES-GCM
  • Unique derived key per user
  • Values never returned by API
  • Injected as environment variables, not written to disk