Secrets Support

User problem

Users currently lack a secure and centralized way to store and manage sensitive credentials (like API keys or database passwords) that are required by their Plotly applications. Storing these directly in application code or configuration files risks exposure in source control, application logs, or during debugging, especially in environments involving large language model (LLM) requests. They need a mechanism to use credentials within their applications without the risk of them being unintentionally leaked.

What is it?

Secrets in Plotly Studio is a new capability for secure credential storage within Plotly Cloud. It provides a dedicated, safe location for users to define and manage their sensitive information as groups of key\/value pairs.

The first implementation of this feature will be leveraged by Data Views feature, without a UI to manage secrets independently, with a management UI to follow in a subsequent release.

What does it allow users to do? It allows users to:

• Store and organize sensitive credentials (secrets) securely in the user’s computer keychain and in Plotly Cloud.

• Safely access these stored secrets within their Plotly applications using a new dedicated secrets library.

• Prevent accidental leakage of sensitive credentials, as the secrets library is designed to ensure the values are not exposed in LLM requests or application logs.

• Provide secure access to other Plotly features, such as the upcoming Data Views feature, by providing the necessary credentials through this secure mechanism.