%term

What is GitHub? Top GitHub Security Best Practices for Securing your Repository

Apr 10, 2025 By SignMyCode In SignMyCode

Did you know that over 90% of modern software applications rely on open-source code? With millions of developers using GitHub daily, the platform has become a goldmine for hackers looking to exploit misconfigured repositories. In the past, incidents occurred where thousands of developers lost access to their projects when attackers wiped out GitHub accounts using simple security loopholes. GitHub is a powerful platform, but if you don’t secure your repository, you invite hackers to your front door.

Read Post

SignMyCode

Read more about What is GitHub? Top GitHub Security Best Practices for Securing your Repository

AI Is the New Trust Boundary: STL TechWeek Reveals the Risk Shift

Apr 9, 2025 By Dwayne McDaniel In GitGuardian

At St. Louis TechWeek 2025, AI took center stage as industry thought leaders shared sessions warning about inputs, data health, and how agents are the new attack surface.

Read Post

GitGuardian

Read more about AI Is the New Trust Boundary: STL TechWeek Reveals the Risk Shift

How to Handle Secrets in Docker

Apr 8, 2025 By Guest Expert In GitGuardian

DevOps engineers must handle secrets with care. In this series, we summarize best practices for leveraging secrets with your everyday tools.

Read Post

GitGuardian

Read more about How to Handle Secrets in Docker

From Alert to Action: Best Practices to Handle Responsible Disclosure

Apr 7, 2025 By Gaetan Ferry In GitGuardian

Responsible disclosure is an often overlooked but critical component of cybersecurity alerting processes. Explore key best practices that can enhance communication and collaboration with researchers, turning potential security threats into opportunities for stronger defense.

Read Post

GitGuardian

Read more about From Alert to Action: Best Practices to Handle Responsible Disclosure

GitGuardian - protect your enterprise against leaked secrets and mismanaged identities.

Apr 7, 2025 By GitGuardian In GitGuardian

We allow organizations to discover and remediate exposed Secrets as well as manage NHIs lifecycle across both their internal network and public perimeter (for ex over permissioned, stale secrets, secrets in multiple vaults…). Our unrivaled secrets detection engine is trained and backtested in real-time against +5Bn commits and used by more than 600k developers, it is also the n°1 app on the GitHub Market place. GitGuardian integrates natively with the SDLC (GitHub, Gitlab…) but also with other data sources such as Jira, Slack, ServiceNow, Docker, as secrets leak in all these environments.

View Video

GitGuardian

Read more about GitGuardian - protect your enterprise against leaked secrets and mismanaged identities.

BSides San Diego 2025: Shifting the Risk Conversation By The Sea Shore

Apr 4, 2025 By Dwayne McDaniel In GitGuardian

Discover how BSidesSD 2025 challenged traditional GRC, spotlighted data poisoning, and promoted human-driven security insights. Read our highlights from this community event.

Read Post

GitGuardian

Read more about BSides San Diego 2025: Shifting the Risk Conversation By The Sea Shore

Introducing GitGuardian's Generic Secrets Enricher

Apr 3, 2025 By GitGuardian In GitGuardian

GitGuardian is proud to introduce our new Machine Learning-powered Generic Secret Enricher, helping all customers quickly understand the origin and type of discovered generic secrets. The 2025 GitGuardian State of Secret Sprawl report shows that 58% of all detected secrets fall into the generic category.

View Video

GitGuardian

Read more about Introducing GitGuardian's Generic Secrets Enricher

The Hidden Breach: Secrets Leaked Outside the Codebase Pose a Serious Threat

Mar 31, 2025 By Dwayne McDaniel In GitGuardian

Secrets aren't just in code. GitGuardian’s 2025 report shows major leaks in collaboration tools like Slack, Jira, and Confluence. Here’s what security teams need to know.

Read Post

GitGuardian

Read more about The Hidden Breach: Secrets Leaked Outside the Codebase Pose a Serious Threat

Github Actions Supply Chain Attacks

Mar 31, 2025 By WatchGuard Technologies In WatchGuard

This week, we discuss a recent cascading supply chain attack involving multiple Github actions workflows that nearly succeeded in compromising a popular Coinbase application. Before that, we discuss a novel way to download malware onto an endpoint by abusing a web browser's caching feature. Additionally, we cover an FBI alert on file converter malware scams.

View Video

WatchGuard

Read more about Github Actions Supply Chain Attacks

The GitGuardian State of Secrets Sprawl 2025: Expert Panel

Mar 31, 2025 By GitGuardian In GitGuardian

GitGuardian's 2025 State of Secrets Sprawl Report reveals that nearly 24 million new hardcoded secrets were exposed on public GitHub in 2024 alone–a staggering 25% increase from the previous year. Together with Chris Smith from Cyberark, our expert panel dives deep into the report's most concerning findings.

View Video

GitGuardian

Read more about The GitGuardian State of Secrets Sprawl 2025: Expert Panel

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

What is GitHub? Top GitHub Security Best Practices for Securing your Repository

AI Is the New Trust Boundary: STL TechWeek Reveals the Risk Shift

How to Handle Secrets in Docker

From Alert to Action: Best Practices to Handle Responsible Disclosure

GitGuardian - protect your enterprise against leaked secrets and mismanaged identities.

BSides San Diego 2025: Shifting the Risk Conversation By The Sea Shore

Introducing GitGuardian's Generic Secrets Enricher

The Hidden Breach: Secrets Leaked Outside the Codebase Pose a Serious Threat

Github Actions Supply Chain Attacks

The GitGuardian State of Secrets Sprawl 2025: Expert Panel

Monthly Archive

Follow Us