In page https://learn.microsoft.com/en-us/training/modules/manage-github-actions-enterprise/manage-encrypted-secrets
it states that
Secrets are encrypted environment variables you can create to...
and in knowledge check https://learn.microsoft.com/en-us/training/modules/manage-github-actions-enterprise/knowledge-check
the question "What are encrypted secrets?" is provided with the answer:
Encrypted secrets are encrypted environment variables you can create to store sensitive information.
Both are incorrect. Secrets are variables that are accessed through the secrets context. They are NOT environment variables.
See the official documentation: https://docs.github.com/en/actions/security-guides/using-secrets-in-github-actions
Secrets are variables that you create ...
Notice that is says "variables", not "environment variables".
If you want an environment variable with a secret, you must create such environment variable with an "env" section, define a name for the environment variable and assign to it the value of the secrets context:
steps:
- name: Hello world action
...
env:
super_secret: ${{ secrets.SuperSecret }}
This question is related to the following Learning Module
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 2%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 16%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERG%3C/text%3E%3C/svg%3E)