Secrets can be created at the repository level to store sensitive information like API keys. These can be accessible by workflows in the SAME REPOSITORY. To use secrets in your GitHub Actions workflow you can use the ${{ secrets.SECRET_NAME }} syntax. For example, if you have a secret named API_KEY, you would use it like this:

yaml

jobs:

my_job:

runs-on: ubuntu-latest

steps:
- name: Use secret
run: echo ${{ secrets.API_KEY }}

Further reading

1. About GitHub Secrets
2. Using secrets in GitHub Actions