Infisical (Secrets)
How Secrets Arrive in Sprites
Section titled “How Secrets Arrive in Sprites”Sprites auto-inject secrets from Infisical into ~/.env.secrets and source them in shell startup during provisioning.
# Inspect secrets loaded in the workspacecat ~/.env.secrets
# Example: access tokens already exportedecho $GITHUB_TOKENRS-1 Cloud Secrets
Section titled “RS-1 Cloud Secrets”RS-1 cloud services use Cloudflare Worker secrets documented in rs-1/docs/cloud/INFRASTRUCTURE.md.
wrangler secret put EMQX_API_KEY --env productionwrangler secret put SIGNING_KEY --env productionwrangler secret put WEBHOOK_SECRET --env productionopticworks-store Secrets
Section titled “opticworks-store Secrets”The store repo uses a pnpm run secrets:pull workflow to populate .env.local and .dev.vars (for Next.js + Wrangler) and warns against committing local env files.
pnpm run secrets:pullSee opticworks-store/docs/SECRETS.md for the full variable list and usage.
n8n-marketing-automation Secrets
Section titled “n8n-marketing-automation Secrets”The N8N deployment uses environment variables in .env on the N100 host. The required keys (including X API credentials) are documented in n8n-marketing-automation/README.md and docs/x-api-setup.md.
Sources
Section titled “Sources”agent-harness/CLAUDE.mdrs-1/docs/cloud/INFRASTRUCTURE.mdopticworks-store/docs/SECRETS.md