Latest Posts

When Google Says "Scan for Secrets": A Complete Guide to Finding Hidden Credentials in Salesforce

Sep 3, 2025 By Guillaume Valadon In GitGuardian

The Salesloft Drift breach affected hundreds of organizations through Salesforce, including Cloudflare, Palo Alto Networks, and Zscaler. Google now explicitly recommends running secrets scanning tools across Salesforce data—here's your complete guide.

Read Post

GitGuardian

Read more about When Google Says "Scan for Secrets": A Complete Guide to Finding Hidden Credentials in Salesforce

Automatic Secrets Redaction at Runtime: Building a GitGuardian Lambda Extension

Sep 2, 2025 By Andy Rea In GitGuardian

I'm going to show you how to build a Lambda Runtime API extension that automatically scans and redacts sensitive information from your function responses, without touching a single line of your existing function code.

Read Post

GitGuardian

Read more about Automatic Secrets Redaction at Runtime: Building a GitGuardian Lambda Extension

Beyond Secrets: How Managed Identities Are Transforming Multicloud Security

Aug 29, 2025 By Mattias Gees In GitGuardian

Managed identities offer a paradigm shift from "what fo you have"to "who you are" authentication, providing automated, short-lived credentials that eliminate credential sprawl across multicloud environments.

Read Post

GitGuardian

Read more about Beyond Secrets: How Managed Identities Are Transforming Multicloud Security

The Nx "s1ngularity" Attack: Inside the Credential Leak

Aug 27, 2025 By Guillaume Valadon In GitGuardian

On August 26, 2025, Nx, the popular build platform with millions of weekly downloads, was compromised with credential-harvesting malware. Using GitGuardian's monitoring data, we analyzed the exfiltrated credentials and reconstructed a fuller scope of exposure.

Read Post

GitGuardian

Read more about The Nx "s1ngularity" Attack: Inside the Credential Leak

How GitGuardian and Delinea Solve Improper Offboarding of NHIs at Scale

Aug 19, 2025 By Soujanya Ain In GitGuardian

Learn how GitGuardian and Delinea solve the growing problem of improper offboarding for Non-Human Identities (NHIs). Discover why orphaned secrets are a top security risk and how to automate their lifecycle management.

Read Post

GitGuardian

Read more about How GitGuardian and Delinea Solve Improper Offboarding of NHIs at Scale

Bring Your Own Source: Plug GitGuardian into Any Workflow in Minutes

Aug 13, 2025 By Soujanya Ain In GitGuardian

Discover how GitGuardian's "Bring Your Own Source" initiative enables security teams to extend secrets detection beyond code repositories, leveraging custom integrations to eliminate a significant hidden attack surface.

Read Post

GitGuardian

Read more about Bring Your Own Source: Plug GitGuardian into Any Workflow in Minutes

How to Securely Access AWS from your EKS Cluster

Aug 11, 2025 By Tiexin Guo In GitGuardian

Discover EKS Pod Identity Association—the modern, secure way to grant AWS permissions without the operational overhead of OIDC providers. No more duplicated IAM roles across clusters, no more trust policy updates every time you scale.

Read Post

GitGuardian

Read more about How to Securely Access AWS from your EKS Cluster

Passwords, Resilience, And Being Human: Working Together For A Brighter Future At BSides Las Vegas 2025

Aug 8, 2025 By Dwayne McDaniel In GitGuardian

Dive into insights from BSides Las Vegas 2025: how identity hygiene, human ecosystems, structural resilience, and unpredictability define modern defenses.

Read Post

GitGuardian

Read more about Passwords, Resilience, And Being Human: Working Together For A Brighter Future At BSides Las Vegas 2025

Probably Secure: A Look At The Security Concerns Of Deterministic Vs Probabilistic Systems

Aug 7, 2025 By Dwayne McDaniel In GitGuardian

Learn why deterministic security remains essential in an AI-driven world and how GitGuardian combines probability and proof for safe, auditable development.

Read Post