Latest Posts

SnowFROC 2025: A Chilly Reminder That OWASP Matters and Exploring Secure Coding Practices with AI Coding Bots

Mar 27, 2025 By Dwayne McDaniel In GitGuardian

At Denver's SnowFROC, security pros tackled the importance of OWASP’s evolving Top 10 and exposed the current shortcomings of AI-generated code for production systems.

Read Post

GitGuardian

Read more about SnowFROC 2025: A Chilly Reminder That OWASP Matters and Exploring Secure Coding Practices with AI Coding Bots

GitGuardian's Secrets Risk Assessment: Know Your True Exposure For Free

Mar 25, 2025 By Soujanya Ain In GitGuardian

Go beyond GitHub's scope. Understand the full picture of your secret leaks with GitGuardian, covering public and internal exposures.

Read Post

GitGuardian

Read more about GitGuardian's Secrets Risk Assessment: Know Your True Exposure For Free

Keeping Secrets Out of Logs: Strategies That Work

Mar 24, 2025 By Anna Nabiullina In GitGuardian

tl;dr: There's no silver bullet for keeping secrets out of logs, but if we put several "lead bullets" in the right places, we have a good chance of success.

Read Post

GitGuardian

Read more about Keeping Secrets Out of Logs: Strategies That Work

A Peek on Cloud Security: JSSI 2025

Mar 21, 2025 By Gaetan Ferry In GitGuardian

At JSSI 2025, French IT security experts discussed the cloud's impact on security. Presentations covered strategy and technical analysis. GitGuardian’s researchers shared insights on detecting secrets in the cloud and responsibly disclosing them to companies.

Read Post

GitGuardian

Read more about A Peek on Cloud Security: JSSI 2025

Compromised tj-actions/changed-files GitHub Action: A look at publicly leaked secrets

Mar 18, 2025 By Gaetan Ferry In GitGuardian

On March 14, 2025, the popular GitHub action tj-actions/changed-files was compromised, exposing secrets in CI logs. GitGuardian's analysis identified leaked secrets like GitHub tokens, AWS keys, and more.

Read Post

GitGuardian

Read more about Compromised tj-actions/changed-files GitHub Action: A look at publicly leaked secrets

Addressing The Growing Challenge of Generic Secrets: Beyond GitHub's Push Protection

Mar 17, 2025 By Dwayne McDaniel In GitGuardian

Generic secrets are hard to detect and are getting leaked more often. See how GitGuardian offers advanced protection where GitHub's push protection falls short.

Read Post

GitGuardian

Read more about Addressing The Growing Challenge of Generic Secrets: Beyond GitHub's Push Protection

Devnexus: Bringing Java Into The Age Of AI

Mar 14, 2025 By Dwayne McDaniel In GitGuardian

The largest Java community conference, Devnexus 2025, tackled AI, security, and Java’s role in enterprise development. Read key takeaways for securing applications.

Read Post

GitGuardian

Read more about Devnexus: Bringing Java Into The Age Of AI

GitGuardian Report: 70% of Leaked Secrets Remain Active for Two Years, Urging Immediate Remediation

Mar 11, 2025 By GitGuardian In GitGuardian

GitGuardian releases its comprehensive "2025 State of Secrets Sprawl Report," revealing a widespread and persistent security crisis that threatens organizations of all sizes. The report exposes a 25% increase in leaked secrets year-over-year, with 23.8 million new credentials detected on public GitHub in 2024 alone. Most concerning for enterprise security leaders: 70% of secrets leaked in 2022 remain active today, creating an expanding attack surface that grows more dangerous with each passing day.

Read Post

GitGuardian

Read more about GitGuardian Report: 70% of Leaked Secrets Remain Active for Two Years, Urging Immediate Remediation

The State of Secrets Sprawl 2025

Mar 11, 2025 By Soujanya Ain In GitGuardian

GitGuardian's 2025 report reveals 70% of leaked secrets remain active two years later. Discover the alarming state of secrets sprawl & protect your organization.

Read Post

GitGuardian

Read more about The State of Secrets Sprawl 2025

GitGuardian Is Now The Overall Most Installed GitHub Marketplace App

Mar 10, 2025 By Dwayne McDaniel In GitGuardian

We are thrilled to announce that the GitGuardian App has become the most installed application on GitHub's Marketplace. We are proud to have passed this milestone, with over 418K developers and organizations trusting GitGuardian to detect secrets in their shared repositories. GitGuardian is now protecting over 12.7M individual repositories. We have been the number one installed security application for some time, but now we have become the single most utilized app across all categories.

Read Post

GitGuardian

Read more about GitGuardian Is Now The Overall Most Installed GitHub Marketplace App

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SnowFROC 2025: A Chilly Reminder That OWASP Matters and Exploring Secure Coding Practices with AI Coding Bots

GitGuardian's Secrets Risk Assessment: Know Your True Exposure For Free

Keeping Secrets Out of Logs: Strategies That Work

A Peek on Cloud Security: JSSI 2025

Compromised tj-actions/changed-files GitHub Action: A look at publicly leaked secrets

Addressing The Growing Challenge of Generic Secrets: Beyond GitHub's Push Protection

Devnexus: Bringing Java Into The Age Of AI

GitGuardian Report: 70% of Leaked Secrets Remain Active for Two Years, Urging Immediate Remediation

The State of Secrets Sprawl 2025

GitGuardian Is Now The Overall Most Installed GitHub Marketplace App

Monthly Archive

Follow Us