%term

A Deep Dive Into ggshield, The GitGuarian CLI

Nov 27, 2025 By GitGuardian In GitGuardian

In this in-depth walkthrough, we will show you how to turn ggshield, the GitGuardian CLI, into a practical guardrail for keeping secrets out of your code and CI pipelines. You’ll see exactly how to install and authenticate ggshield, then use it to scan repositories, local paths, archives, Docker images, PyPI packages, and CI environments for hardcoded credentials. We’ll also walk through configuring Git hooks with ggshield install.

View Video

GitGuardian

Read more about A Deep Dive Into ggshield, The GitGuarian CLI

Shai-Hulud 2.0 Exposes Over 33,000 Unique Secrets [Updated Nov, 27]

Nov 27, 2025 By Guillaume Valadon In GitGuardian

On November 24, a new wave of the Shai-Hulud supply chain attack emerged. The threat actors exfiltrate stolen credentials directly to GitHub repositories created with compromised tokens.

Read Post

GitGuardian

Read more about Shai-Hulud 2.0 Exposes Over 33,000 Unique Secrets [Updated Nov, 27]

A Complete Guide to Transport Layer Security (TLS) Authentication

Nov 25, 2025 By Tiexin Guo In GitGuardian

Data security is non-negotiable. Transport Layer Security (TLS) authentication stands as the cornerstone for the protection of data in transit. When it comes to protecting enterprise APIs, systems, and identities, the importance of TLS auth cannot be overstated.

Read Post

GitGuardian

Read more about A Complete Guide to Transport Layer Security (TLS) Authentication

OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

Nov 24, 2025 By Dwayne McDaniel In GitGuardian

Discover what’s changed in the OWASP 2025 Top 10 and how GitGuardian helps you mitigate risks like broken access control and software supply chain failures.

Read Post

GitGuardian

Read more about OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

Automate Public Secrets Incident Response and Remediation with GitGuardian Playbooks

Nov 24, 2025 By GitGuardian In GitGuardian

GitGuardian Playbooks are now available for Public Incidents, bringing the same powerful automations used in internal monitoring to leaks in public repos. Playbooks now available for Public Monitoring customers.

View Video

GitGuardian

Read more about Automate Public Secrets Incident Response and Remediation with GitGuardian Playbooks

Workload And Agentic Identity at Scale: Insights From CyberArk's Workload Identity Day Zero

Nov 21, 2025 By Dwayne McDaniel In GitGuardian

On the eve of KubeCon 2025, experts from companies like Uber, AWS, and Block shared how SPIRE and workload identity fabrics reduce risk in complex, cloud-native systems.

Read Post

GitGuardian

Read more about Workload And Agentic Identity at Scale: Insights From CyberArk's Workload Identity Day Zero

Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon 2025

Nov 20, 2025 By Dwayne McDaniel In GitGuardian

From secure service mesh rollouts to AI cluster hardening, see how KubeCon + CloudNativeCon NA 2025 redefined identity, trust, and governance in Kubernetes environments.

Read Post

GitGuardian

Read more about Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon 2025

Introducing The GitGuardian IDE Extension for VS Code, Cursor, Antigravity, And Windsurf

Nov 20, 2025 By GitGuardian In GitGuardian

Ship fewer secrets with your code. In this video we walk you through installing and using the GitGuardian IDE extension in Visual Studio Code, Cursor, Antigravity, Windsurf, and any VS Code compatible editor. You will see how the extension uses ggshield, the GitGuardian command line tool, to scan for 500+ types of secrets and catch plaintext credentials as soon as you save a file, long before they can be committed.

View Video

GitGuardian

Read more about Introducing The GitGuardian IDE Extension for VS Code, Cursor, Antigravity, And Windsurf

From Cloud to Code: Salt Cloud Connect Now Scans GitHub

Nov 18, 2025 By Eric Schwake In Salt Security

One of our most-loved features is Salt Cloud Connect. In a world of complex deployments, it’s a breath of fresh air: an agentless discovery model that delivers under 10-minute deployment and rapidly gathering API-specific info in cloud platforms. Customers plug it in, and in minutes, not weeks, they get a “traffic-free”, complete inventory of their APIs across AWS, Azure, GCP, Kong, and Mulesoft. This “ease of use” provides a “wow” moment of immediate visibility.

Read Post

Salt Security

Read more about From Cloud to Code: Salt Cloud Connect Now Scans GitHub

API Key Security: 7 Enterprise-Proven Methods to Prevent Costly Data Breaches

Nov 14, 2025 By Tiexin Guo In GitGuardian

In this blog, we will navigate through a few enterprise-proven methods to make API key more secure. Read on!

Read Post

GitGuardian

Read more about API Key Security: 7 Enterprise-Proven Methods to Prevent Costly Data Breaches

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

A Deep Dive Into ggshield, The GitGuarian CLI

Shai-Hulud 2.0 Exposes Over 33,000 Unique Secrets [Updated Nov, 27]

A Complete Guide to Transport Layer Security (TLS) Authentication

OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

Automate Public Secrets Incident Response and Remediation with GitGuardian Playbooks

Workload And Agentic Identity at Scale: Insights From CyberArk's Workload Identity Day Zero

Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon 2025

Introducing The GitGuardian IDE Extension for VS Code, Cursor, Antigravity, And Windsurf

From Cloud to Code: Salt Cloud Connect Now Scans GitHub

API Key Security: 7 Enterprise-Proven Methods to Prevent Costly Data Breaches

Monthly Archive

Follow Us