Tencent Cloud Hunyuan
Tencent CloudAI API1 credential
SecretId / SecretKey
tencent-hunyuan / secret-id-secret-key
Tencent Cloud Hunyuan API access uses Tencent Cloud CAM SecretId and SecretKey credentials for signed API requests. These credentials are account or sub-account API keys, not model-specific bearer tokens.
Looks like
exampleAKIDXXXXXXXXXXXXXXXXXXXXXXXXXXXXLocation
TENCENTCLOUD_SECRET_IDTENCENTCLOUD_SECRET_KEYAuthorizationTC3-HMAC-SHA256 signed request header contains the SecretId in Credential scope
SDK examples, backend services, notebooks, committed .env files
.env, cloud function config, deployment manifests, local credentials files
CI/CD variables, Tencent Cloud secrets, hosted app settings
request signing debug logs and Authorization headers exposing SecretId
Notes
A leaked SecretKey is the credential that enables request signing; the SecretId alone is usually not sufficient, but both values commonly leak together in environment files and deployment configuration.
Scope
Authorized use
LOLCreds helps map the credential surface of real products: known defaults, generated values, credential locations, and exposure patterns.