Use this file to discover all available pages before exploring further.

Secrets

text
`openclaw secrets`

Use

text

openclaw secrets

to manage SecretRefs and keep the active runtime snapshot healthy.

Command roles:

text
reload
: gateway RPC (
text
secrets.reload
) that re-resolves refs and swaps runtime snapshot only on full success (no config writes).
text
audit
: read-only scan of configuration/auth/generated-model stores and legacy residues for plaintext, unresolved refs, and precedence drift (exec refs are skipped unless
text
--allow-exec
is set).
text
configure
: interactive planner for provider setup, target mapping, and preflight (TTY required).
text
apply
: execute a saved plan (
text
--dry-run
for validation only; dry-run skips exec checks by default, and write mode rejects exec-containing plans unless
text
--allow-exec
is set), then scrub targeted plaintext residues.

Recommended operator loop:


bash
openclaw secrets audit --check
openclaw secrets configure
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json --dry-run
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json
openclaw secrets audit --check
openclaw secrets reload

If your plan includes

text

exec

SecretRefs/providers, pass

text

--allow-exec

on both dry-run and write apply commands.

Exit code note for CI/gates:

text
audit --check
returns
text
1
on findings.
unresolved refs return
text
2
.

Secrets guide: Secrets Management
Credential surface: SecretRef Credential Surface
Security guide: Security

Reload runtime snapshot

Re-resolve secret refs and atomically swap runtime snapshot.


bash
openclaw secrets reload
openclaw secrets reload --json
openclaw secrets reload --url ws://127.0.0.1:18789 --token <token>

Notes:

Uses gateway RPC method
text
secrets.reload
.
If resolution fails, gateway keeps last-known-good snapshot and returns an error (no partial activation).
JSON response includes
text
warningCount
.

Options:

text
--url <url>
text
--token <token>
text
--timeout <ms>
text
--json

Audit

Scan OpenClaw state for:

plaintext secret storage
unresolved refs
precedence drift (
text
auth-profiles.json
credentials shadowing
text
openclaw.json
refs)
generated
text
agents/*/agent/models.json
residues (provider
text
apiKey
values and sensitive provider headers)
legacy residues (legacy auth store entries, OAuth reminders)

Header residue note:

Sensitive provider header detection is name-heuristic based (common auth/credential header names and fragments such as
text
authorization
,
text
x-api-key
,
text
token
,
text
secret
,
text
password
, and
text
credential
).


bash
openclaw secrets audit
openclaw secrets audit --check
openclaw secrets audit --json
openclaw secrets audit --allow-exec

Exit behavior:

text
--check
exits non-zero on findings.
unresolved refs exit with higher-priority non-zero code.

Report shape highlights:

text
status
:
text
clean | findings | unresolved
text
resolution
:
text
refsChecked
,
text
skippedExecRefs
,
text
resolvabilityComplete
text
summary
:
text
plaintextCount
,
text
unresolvedRefCount
,
text
shadowedRefCount
,
text
legacyResidueCount
finding codes:
- text
  PLAINTEXT_FOUND
- text
  REF_UNRESOLVED
- text
  REF_SHADOWED
- text
  LEGACY_RESIDUE

Configure (interactive helper)

Build provider and SecretRef changes interactively, run preflight, and optionally apply:


bash
openclaw secrets configure
openclaw secrets configure --plan-out /tmp/openclaw-secrets-plan.json
openclaw secrets configure --apply --yes
openclaw secrets configure --providers-only
openclaw secrets configure --skip-provider-setup
openclaw secrets configure --agent ops
openclaw secrets configure --json

Flow:

Provider setup first (
text
add/edit/remove
for
text
secrets.providers
aliases).
Credential mapping second (select fields and assign
text
{source, provider, id}
refs).
Preflight and optional apply last.

Flags:

text
--providers-only
: configure
text
secrets.providers
only, skip credential mapping.
text
--skip-provider-setup
: skip provider setup and map credentials to existing providers.
text
--agent <id>
: scope
text
auth-profiles.json
target discovery and writes to one agent store.
text
--allow-exec
: allow exec SecretRef checks during preflight/apply (may execute provider commands).

Notes:

Requires an interactive TTY.
You cannot combine
text
--providers-only
with
text
--skip-provider-setup
.
text
configure
targets secret-bearing fields in
text
openclaw.json
plus
text
auth-profiles.json
for the selected agent scope.
text
configure
supports creating new
text
auth-profiles.json
mappings directly in the picker flow.
Canonical supported surface: SecretRef Credential Surface.
It performs preflight resolution before apply.
If preflight/apply includes exec refs, keep
text
--allow-exec
set for both steps.
Generated plans default to scrub options (
text
scrubEnv
,
text
scrubAuthProfilesForProviderTargets
,
text
scrubLegacyAuthJson
all enabled).
Apply path is one-way for scrubbed plaintext values.
Without
text
--apply
, CLI still prompts
text
Apply this plan now?
after preflight.
With
text
--apply
(and no
text
--yes
), CLI prompts an extra irreversible confirmation.
text
--json
prints the plan + preflight report, but the command still requires an interactive TTY.

Exec provider safety note:

Homebrew installs often expose symlinked binaries under
text
/opt/homebrew/bin/*
.
Set
text
allowSymlinkCommand: true
only when needed for trusted package-manager paths, and pair it with
text
trustedDirs
(for example
text
["/opt/homebrew"]
).
On Windows, if ACL verification is unavailable for a provider path, OpenClaw fails closed. For trusted paths only, set
text
allowInsecurePath: true
on that provider to bypass path security checks.

Apply a saved plan

Apply or preflight a plan generated previously:


bash
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json --allow-exec
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json --dry-run
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json --dry-run --allow-exec
openclaw secrets apply --from /tmp/openclaw-secrets-plan.json --json

Exec behavior:

text
--dry-run
validates preflight without writing files.
exec SecretRef checks are skipped by default in dry-run.
write mode rejects plans that contain exec SecretRefs/providers unless
text
--allow-exec
is set.
Use
text
--allow-exec
to opt in to exec provider checks/execution in either mode.

Plan contract details (allowed target paths, validation rules, and failure semantics):

Secrets Apply Plan Contract

What

text

apply

may update:

text
openclaw.json
(SecretRef targets + provider upserts/deletes)
text
auth-profiles.json
(provider-target scrubbing)
legacy
text
auth.json
residues
text
~/.openclaw/.env
known secret keys whose values were migrated

Why no rollback backups

text

secrets apply

intentionally does not write rollback backups containing old plaintext values.

Safety comes from strict preflight + atomic-ish apply with best-effort in-memory restore on failure.

Example


bash
openclaw secrets audit --check
openclaw secrets configure
openclaw secrets audit --check

text

audit --check

still reports plaintext findings, update the remaining reported target paths and rerun audit.

OpenClaw Docs

Secrets

text
`openclaw secrets`

Reload runtime snapshot

Audit

Configure (interactive helper)

Apply a saved plan

Why no rollback backups

Example

Related

OpenClaw Docs

Secrets

textCopyopenclaw secrets

Reload runtime snapshot

Audit

Configure (interactive helper)

Apply a saved plan

Why no rollback backups

Example

Related

text
`openclaw secrets`