Environment Variables

Reference for environment variables used by the Sekuire TypeScript SDK.

Core Runtime & Identity

Variable	Description
`SEKUIRE_AGENT_ID`	Agent Sekuire ID (required for `SekuireSDK.fromEnv()`)
`SEKUIRE_AGENT_NAME`	Optional display name
`SEKUIRE_PRIVATE_KEY`	Optional private key for identity signing utilities
`SEKUIRE_PUBLIC_KEY`	Optional public key for verification utilities

Bootstrap & Credential Recovery

Variable	Description
`SEKUIRE_INSTALL_TOKEN`	One-time bootstrap token
`SEKUIRE_INSTALLATION_ID`	Installation ID for recovery
`SEKUIRE_REFRESH_TOKEN`	Refresh token for runtime token rotation
`SEKUIRE_RUNTIME_TOKEN`	Existing runtime token (optional)

Auth resolution by component

Beacon: recovery credentials first (INSTALLATION_ID + REFRESH_TOKEN), validates existing runtime token when present, then install token.
TaskWorker: runtime token first, then recovery credentials, then install token.
A2AClient task endpoints: tokenResolver runtime token, else setRuntimeToken, else JWT bearer if token looks JWT-like, else API key headers. Runtime-token 401 responses can auto-refresh once via onUnauthorized.

API/Workspace Settings

Variable	Description	Default
`SEKUIRE_API_URL`	Core API base URL	`https://api.sekuire.ai`
`SEKUIRE_WORKSPACE_ID`	Workspace for policy + recovery bootstrap	-
`SEKUIRE_API_KEY`	API key for registry/core endpoints	-
`SEKUIRE_ENVIRONMENT`	Environment label	`production`
`SEKUIRE_DEPLOYMENT_URL`	Optional explicit deployment URL	auto-detected
`SEKUIRE_DEVICE_FINGERPRINT`	Optional device fingerprint for API-key auth on A2A task endpoints	`sekuire-typescript-sdk`

Policy/Override Settings

Variable	Description
`SEKUIRE_POLICY_DEV_OVERRIDE`	Warn-only policy enforcement mode when `true`
`SEKUIRE_NO_CTA`	Suppress standalone-mode upgrade message when `true`
`SEKUIRE_TELEMETRY`	Opt-in to anonymous usage telemetry when `true` (default off)

LLM Provider Keys

Variable	Description
`OPENAI_API_KEY`	OpenAI API key
`ANTHROPIC_API_KEY`	Anthropic API key
`GOOGLE_API_KEY`	Google API key
`OLLAMA_BASE_URL`	Ollama endpoint (`http://localhost:11434` default)

Example `.env`

SEKUIRE_AGENT_ID=7f8a9b3c2d1e...
SEKUIRE_AGENT_NAME=my-agent
SEKUIRE_API_URL=https://api.sekuire.ai
SEKUIRE_WORKSPACE_ID=ws_abc123

# Initial bootstrap
SEKUIRE_INSTALL_TOKEN=skt_xxx

# Recovery (preferred after first deploy)
SEKUIRE_INSTALLATION_ID=inst_xxx
SEKUIRE_REFRESH_TOKEN=srf_xxx
SEKUIRE_RUNTIME_TOKEN=srt_xxx

SEKUIRE_API_KEY=sk_live_xxx
OPENAI_API_KEY=sk-...

Core Runtime & Identity​

Bootstrap & Credential Recovery​

Auth resolution by component​

API/Workspace Settings​

Policy/Override Settings​

LLM Provider Keys​

Example .env​

Next Steps​

Core Runtime & Identity

Bootstrap & Credential Recovery

Auth resolution by component

API/Workspace Settings

Policy/Override Settings

LLM Provider Keys

Example `.env`

Next Steps