With javascript and fetch(), it's possible to easily import data from other services. However, in order to do this, I need some API tokens.

Of course, I could turn on E2E encryption, but this only applies to cloud sync, and the notes are still available as plain text to most programs running locally. So this is not really enough. MacOS has tools like keychain for this purpose. I may also not want every token to be available on every device for compliance reasons.

It'd be nice if there was a way to securely store some values, with an optional prompt in case the secret is unavailable.