Credentials
Vault (Provider Credentials)
The vault stores encrypted provider credentials at the workspace level. These credentials are used for agent runtime and knowledge ingestion, depending on configuration.
What You Can Store
The current UI supports managing a provider API key (for example, an OpenAI API key).
Who Can Manage Vault Secrets
Vault secrets are an admin-level capability. Typically, only workspace owners and admins should be able to create, update, or delete credentials.
Security
Do not paste provider keys into prompts or knowledge documents. Use the vault so secrets are encrypted and access is audited through workspace permissions.