1. Resources
  2. /
  3. Plugins
  4. /
  5. doppler-secrets-buildkite-plugin

Doppler Secrets Buildkite Plugin

Build status Release Release date License Buy Me A Coffee

A Buildkite plugin for exposing secrets from Doppler to your build steps.

Plugin State: Beta


Requirements

The doppler CLI must be installed!

Examples

The following pipeline uses a Service Token to set all secrets as environment variables. The Service Token is set on the runner through the enviroment variable DOPPLER_TOKEN.

steps:
  - command: "echo $MY_SECRET"
    plugins:
      - muhlba91/doppler-secrets#v1.1.0

You can also directly specify the token (insecure!):

steps:
  - command: "echo $MY_SECRET"
    plugins:
      - muhlba91/doppler-secrets#v1.1.0:
          token: dp.XXX

Personal Tokens are also supported but require setting project and config:

steps:
  - command: "echo $MY_SECRET"
    plugins:
      - muhlba91/doppler-secrets#v1.1.0:
          project: project
          project-config: prod

If you want to control what secrets are being exposed you can specify the variables parameter:

steps:
  - command: "echo $MY_SECRET"
    plugins:
      - muhlba91/doppler-secrets#v1.1.0:
          secrets:
            - MY_SECRET

Warning

The plugin does not perform variable sanitation!


Configuration

Optional

token (optional, string)

The Buildkite token to use (Service Token, or Personal Token).

Example: dp.XXX

project (optional, string)

The Doppler project to read the secrets from.

Required for Personal Tokens!

Example: project

project-config (optional, string)

The Doppler configuration within the set project to read the secrets from.

Required for Personal Tokens!

Example: prod

secrets (optional, array)

Sets the secrets to be read as environment variables.

Attention: at the moment, this forces multiple calls to Doppler, and incurs performance penalty!

Example: [ "MY_SECRET1", "MY_SECRET2" ]


License

MIT (see LICENSE)

Supporting

If you enjoy the application and want to support my efforts, please feel free to buy me a coffe. :)

Buy Me A Coffee

The plugins listed on this webpage are provided for informational purposes only. They have not undergone any formal security review or assessment. While we strive to provide useful resources, we cannot guarantee the safety, reliability, or integrity of these plugins. Users are strongly advised to conduct their own security evaluations before downloading, installing, or using any plugin. By using these plugins, you acknowledge and accept any risks associated with their use. We disclaim any liability for any harm or damages arising from the use of the plugins listed.

Start turning complexity into an advantage

Create an account to get started with a 30-day free trial. No credit card required.

Buildkite Pipelines

Platform

  1. Pipelines
  2. Pipeline templates
  3. Public pipelines
  4. Test Engine
  5. Package Registries
  6. Mobile Delivery Cloud
  7. Pricing

Hosting options

  1. Self-hosted agents
  2. Mac hosted agents
  3. Linux hosted agents

Resources

  1. Docs
  2. Blog
  3. Changelog
  4. Webinars
  5. Plugins
  6. Case studies
  7. Events
  8. Migration Services
  9. Comparisons

Company

  1. About
  2. Careers
  3. Press
  4. Brand assets
  5. Contact

Solutions

  1. Replace Jenkins
  2. Workflows for AI/ML
  3. Testing at scale
  4. Monorepo mojo
  5. Bazel orchestration

Legal

  1. Terms of Service
  2. Acceptable Use Policy
  3. Privacy Policy
  4. Subprocessors
  5. Service Level Agreement

Support

  1. System status
  2. Forum
© Buildkite Pty Ltd 2025