How to Add Secrets to Github: 1-Min Guide

How to Add Secrets to Github

Updated on:

May 12, 2026

By:

Use this interactive demo to learn how to securely store secrets in a GitHub repository.

Quick summary

GitHub Secrets allow you to securely store sensitive data like API keys, tokens, and credentials so they can be used in GitHub Actions workflows without being hard-coded in your repository. This tutorial walks you through every step to add a repository secret via GitHub Settings.

Steps

Go to the main page of your repository on GitHub.
Click on the Settings tab at the top of the repository.
In the left sidebar, scroll down and click on Secrets and variables under Security.
Select Actions to access GitHub Actions secrets.
Click on New repository secret.
Enter a name for your secret, using all caps by convention.
Enter the secret value in the value field.
Click Add secret to save it.
Your secret is now stored securely and available for use in your workflows without being hard-coded in your repository.

📌 Why this matters

Storing sensitive data like API keys, tokens, and credentials directly in source code is a critical security risk that exposes repositories to breaches. GitHub Secrets provides a secure, encrypted storage layer that makes sensitive values available to GitHub Actions workflows at runtime, keeping them completely out of your codebase. This is an essential practice for any team running automated CI/CD pipelines, as it ensures credentials are never accidentally committed or exposed in version history. Properly managing GitHub Actions secrets reduces security vulnerabilities and helps teams meet compliance and best-practice standards for DevOps security.

Your product deserves an interactive demo

Start free

How to Import a Project from GitHub to Replit

How to Push Code from Replit to GitHub

How to Connect Replit to GitHub