Skip to content
Gumball Docs

Secrets

Define secrets in [inputs]

Section titled “Define secrets in [inputs]”
[inputs]
DATABASE_URL = { type = "secret", label = "Database URL", required = true }
API_KEY = { type = "secret", label = "API Key" }
DEBUG_MODE = { type = "string", default = "false" }

Best practices

Section titled “Best practices”
  1. Never hardcode secrets in code
  2. Combine with egress allowlisting where possible
  3. Never put secrets into defaults