# Prevent Secrets from Leaking Learn how to safeguard credentials and sensitive data using Warp’s secret-reduction and Rule system. {% embed url="" %} This tutorial shows how to use Warp’s **Rules** to prevent AI agents or collaborators from exposing sensitive information while coding or sharing output. Whether you’re pair-programming, streaming, or reviewing code, Warp can automatically redact secrets before they’re ever seen by an agent. {% stepper %} {% step %} **The Problem** AI assistants often echo API keys, tokens, or credentials in generated code blocks.\ When collaborating or screen-sharing, that can expose secrets publicly. {% endstep %} {% step %} **The Rule Setup** Define a simple Rule in Warp that instructs the agent to **never display secrets** in outputs or commands. {% code title="Example Rule" %} ``` Rule: Protect Secrets Behavior: - Never include or reveal secrets when generating code or commands. - Automatically redact sensitive strings before showing output. ``` {% endcode %} {% hint style="info" %} Enable Warp’s built-in Secret Reduction: Settings → AI → Enable Secret Reduction This automatically masks sensitive values before the agent or output logs can access them. {% endhint %} {% endstep %} {% step %} **Benefits** * Protects API keys and credentials from exposure * Keeps live streams and demos safe * Works seamlessly with pair-programming or AI debugging {% endstep %} {% endstepper %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.warp.dev/guides/devops-and-infrastructure/how-to-prevent-secrets-from-leaking.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.