CtrlK
BlogDocsLog inGet started
Tessl Logo

create-secret

Generate Harness Secret definitions and manage secrets via MCP v2 tools. Supports SecretText, SecretFile, SSHKey, and WinRmCredentials types with configurable secret managers (Harness built-in, HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, GCP Secret Manager). Use when asked to create a secret, store credentials, manage API keys, set up SSH keys, configure WinRM credentials, rotate secrets, or reference secrets in pipelines. Trigger phrases: create secret, secret text, secret file, SSH key, API key, password, credentials, secret manager, store secret.

76

1.10x
Quality

64%

Does it follow best practices?

Impact

96%

1.10x

Average score across 3 eval scenarios

SecuritybySnyk

Passed

No known issues

Optimize this skill with Tessl

npx tessl skill review --optimize ./plugins/claude/skills/create-secret/SKILL.md
SKILL.md
Quality
Evals
Security

Evaluation results

98%

9%

CI/CD Secret Provisioning for a New Microservice

Secret provisioning workflow with built-in manager

Criteria
Without context
With context

Check before create

40%

100%

Create tool call

70%

100%

Verify after create

80%

100%

SecretText type

100%

100%

Harness built-in SM identifier

100%

90%

valueType Inline

100%

87%

API key naming convention

100%

100%

Password naming convention

100%

100%

Token naming convention

100%

100%

Project scope parameters

100%

100%

No actual secret values

100%

100%

100%

11%

Integrating HashiCorp Vault Secrets into Harness Pipelines

Vault-backed secret reference with #key and org scope

Criteria
Without context
With context

valueType Reference

100%

100%

External SM identifier

100%

100%

Vault path with #key suffix

100%

100%

Correct #key per secret

100%

100%

Org-level scope in YAML

100%

100%

Password naming convention

62%

100%

Org prefix in pipeline reference

100%

100%

Service variable type Secret

100%

100%

Connector tokenRef format

20%

100%

No actual values

100%

100%

92%

8%

Multi-Platform Deployment Credential Setup

SSH KeyReference and WinRM NTLM credential definitions

Criteria
Without context
With context

SSHKey type

0%

100%

KeyReference credentialType

100%

100%

KeyReference fields

100%

100%

SSH naming convention

100%

100%

WinRmCredentials type

0%

100%

NTLM auth type

100%

100%

WinRM port and SSL

100%

100%

Project scope parameters

100%

100%

Project reference expression

100%

100%

No actual credentials

100%

100%

PEM format note

100%

0%

Repository
harness/harness-ai
Commit

a000afa

Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

CI/CD Secret Provisioning for a New MicroserviceIntegrating HashiCorp Vault Secrets into Harness PipelinesMulti-Platform Deployment Credential Setup

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill