From 3b5fbcf613bc2edd70493cd4edd78cac70f4dafe Mon Sep 17 00:00:00 2001
From: ToriLindsay <tgalatro@cloudflare.com>
Date: Tue, 30 Dec 2025 10:41:21 +0000
Subject: [PATCH] [Stream] Add security recommendation to signing keys

---
 .../docs/stream/viewing-videos/securing-your-stream.mdx       | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/content/docs/stream/viewing-videos/securing-your-stream.mdx b/src/content/docs/stream/viewing-videos/securing-your-stream.mdx
index 47d621a82d45ec..ab262355837079 100644
--- a/src/content/docs/stream/viewing-videos/securing-your-stream.mdx
+++ b/src/content/docs/stream/viewing-videos/securing-your-stream.mdx
@@ -196,7 +196,9 @@ The response will return `pem` and `jwk` values.
 }
 ```
 
-Save these values as they won't be shown again. You will use these values later to generate the tokens. The pem and jwk fields are base64-encoded, you must decode them before using them (an example of this is shown in step 2).
+These values will not be shown again so we recommend saving them securely right away. If you are using Cloudflare Workers, you can store them using [Secrets](/workers/configuration/secrets/). If you are using another platform, store them in secure environment variables.
+
+You will use these values later to generate the tokens. The pem and jwk fields are base64-encoded, you must decode them before using them (an example of this is shown in step 2).
 
 ### Step 2: Generate tokens using the key