Dataset Secrets
Copy for LLM
Copy page as Markdown for LLMs
View as Markdown
Open this page as Markdown
Open in ChatGPT
Get insights from ChatGPT
Open in Claude
Get insights from Claude

Dataset secrets allow you to securely store API keys, tokens, and other sensitive credentials alongside your dataset. These secrets are encrypted at rest and never exposed to raters — they are injected server-side when your code makes network requests.

Adding Secrets

When creating a dataset, you can add secrets in the Secrets section. Each secret requires:

Name — An uppercase identifier (e.g., API_KEY, OPENAI_KEY)
Value — The actual secret value

Naming Convention

Secret names must start with an uppercase letter and can only contain uppercase letters, numbers, and underscores. For example: API_KEY, OPENAI_KEY, MY_TOKEN_123.

Using Secrets in Your Code in Embedded Experiments

Reference your secrets using the placeholder syntax:

#{SECRETS.SECRET_NAME}

When your code makes a network request containing this placeholder, it is automatically replaced with the actual secret value.

In URLs

const response = await fetch(
    'https://api.example.com/generate?token=#{SECRETS.API_TOKEN}'
);

In Headers

const response = await fetch('https://api.openai.com/v1/chat/completions', {
    method: 'POST',
    headers: {
        'Authorization': 'Bearer #{SECRETS.OPENAI_KEY}',
        'Content-Type': 'application/json'
    },
    body: JSON.stringify({ /* ... */ })
});

WebSocket Connections

const ws = new WebSocket(
    'wss://api.example.com/stream?token=#{SECRETS.WS_TOKEN}'
);

Adding Secrets via API

You can also add secrets when creating a dataset through the API by including a secrets array in your request:

curl -X POST \
    'https://api.mabyduck.com/projects/{project_id}/datasets/' \
    -H 'Authorization: Api-Key <YOUR_API_KEY>' \
    -H 'Content-Type: application/json' \
    -d '{
        "name": "My Dataset",
        "filename": "dataset.zip",
        "secrets": [
            {"name": "OPENAI_KEY", "value": "sk-..."},
            {"name": "API_TOKEN", "value": "token-123"}
        ]
    }'

import requests

response = requests.post(
    f"https://api.mabyduck.com/projects/{project_id}/datasets/",
    headers={
        "Authorization": "Api-Key <YOUR_API_KEY>",
        "Content-Type": "application/json"
    },
    json={
        "name": "My Dataset",
        "filename": "dataset.zip",
        "secrets": [
            {"name": "OPENAI_KEY", "value": "sk-..."},
            {"name": "API_TOKEN", "value": "token-123"}
        ]
    }
)

Write-only

Secrets are write-only. Once added, they cannot be read back through the API or UI — only replaced or deleted by uploading a new dataset.

Dataset SecretsCopyCopy for LLMCopy page as Markdown for LLMsView as MarkdownOpen this page as MarkdownOpen in ChatGPTGet insights from ChatGPTOpen in ClaudeGet insights from Claude