Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.voiceflow.com/llms.txt

Use this file to discover all available pages before exploring further.

Cover Placeholder Secrets let you securely store sensitive information like API keys, database credentials, and encryption keys. Unlike variables, secret values are encrypted and hidden from view, keeping your credentials safe while still allowing your agent to use them.

Creating secrets

You can create and manage secrets in SettingsSecrets. Click New Secret in the top right to create one. When creating a secret, you’ll provide a name, value, and visibility setting:
  • Masked secrets are hidden by default but can be temporarily revealed by clicking on them.
  • Restricted secrets cannot be revealed after creation. Use this for highly sensitive credentials.
You can also create secrets inline while building. Type { in any input field, switch to the Secrets tab in the dropdown, then click Create Secret at the bottom.

Using secrets

Secrets work like variables but are accessed from a separate tab. In any input field within a tool, type { to open the dropdown, then switch to the Secrets tab and select the secret you need.
Screenshot2026 02 17at4 49 22PM

Managing secrets

To edit or delete a secret, click the three dots menu next to it. For masked secrets, you can also copy the value to your clipboard. Restricted secrets cannot be copied or revealed.

Overriding secrets per environment

By default, every environment in your project uses the same secret values. You can override specific secret values on a per-environment basis, which is useful when you want, for example, a test API key on a non-production environment and a production API key on Main. To configure overrides, open SettingsEnvironments, open the ... menu next to the environment you want to configure, and select Override live secrets or Override draft secrets. Enter the environment-specific values and save. Secrets without an override fall back to their default value.
Secrets Override
Restricted secrets can be overridden but their override values cannot be revealed after saving, in line with how restricted secrets behave at the project level.
Secret values are not copied when you clone an environment. After cloning, reapply any environment-specific overrides in the new environment.

Duplicating and exporting projects

When you duplicate or export a project, only secret names are included. Secret values are never copied for security reasons. After importing a duplicated project, you’ll need to re-enter the secret values in SettingsSecrets.

Security

Secrets are encrypted using AES-256 GCM, which provides both confidentiality and integrity protection through a Message Authentication Code (MAC). Encryption keys are securely managed and secrets are stored and transmitted according to industry best practices.