%term

DevOps Credential Hygiene: How to Eliminate CI/CD Secrets with Teleport

Dec 22, 2025 By Meina Ghafouri In Teleport

Static credential practices — where certificates, keys, and tokens persist for months or years and are manually rotated — create systemic risk in DevOps pipelines. Rotating these secrets is time-consuming and costly. In fact, organizations may spend dozens of hours and involve multiple teams to rotate a single credential. Manual rotation quickly becomes impractical across thousands of service accounts. In this post, you will learn.

Read Post

Teleport

Read more about DevOps Credential Hygiene: How to Eliminate CI/CD Secrets with Teleport

How To Use ggshield To Avoid Hardcoded Secrets [cheat sheet included]

Dec 10, 2025 By Dwayne McDaniel In GitGuardian

ggshield, GitGuardian’s CLI, can help you keep your secrets out of your repos, pipelines, and much more. Download our handy cheat sheet to help you make the most out of our CLI.

Read Post

GitGuardian

Read more about How To Use ggshield To Avoid Hardcoded Secrets [cheat sheet included]

From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps

Dec 5, 2025 By Dwayne McDaniel In GitGuardian

Secrets don’t belong in plaintext. GitGuardian's Push-to-Vault automates vaulting exposed secrets, helping security teams scale governance and reduce incident fatigue.

Read Post

GitGuardian

Read more about From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps

Detect and block exposed credentials with Datadog Secret Scanning

Dec 1, 2025 By Michelle Sun In Datadog

Securing secrets is a difficult task. Developers frequently hardcode credentials for quick testing or use AI-generated code snippets that include live API keys or tokens. This means that enterprise secrets can inadvertently make their way into repositories and pipelines, exposing organizations to security and compliance risks without anyone noticing. When a secret is committed to a repository, it spreads quickly across branches, becomes difficult to track, and leads to leaks that are hard to clean up.

Read Post

Datadog

Read more about Detect and block exposed credentials with Datadog Secret Scanning

How 1Password Environments makes secrets management simple for developers

Nov 17, 2025 By 1Password In 1Password

In this recorded live demo, we'll walk you through how 1Password Environments helps you securely manage secrets, from local dev to production, without the pain of.env files or messy token sharing.

View Video

1Password

Read more about How 1Password Environments makes secrets management simple for developers

Top Secrets Management Tools in 2026

Nov 12, 2025 By Ashley D'Andrea In Keeper

Organizations rely on a combination of internal systems and cloud services to run their business, all of which require sensitive credentials, such as API keys, SSH keys, database passwords, tokens and certificates. Secrets management refers to the storing, organizing and managing of these credentials to prevent unauthorized access.

Read Post

Keeper

Read more about Top Secrets Management Tools in 2026

The Shift Left of Boom: Making Cyber Threat Prevention Practical Again

Nov 5, 2025 By John Dominguez, Senior Director of Product Marketing In Reach Security

The old saying "prevention is better than cure" has lost currency in today's cybersecurity industry. Instead, security teams are advised to assume that the business has been breached and focus on threat detection, investigation, response, and recovery. Yet, during cyber incident post-mortems, it is not uncommon to find that the business owned the tool that would have protected it against the breach. The problem arose because it wasn't correctly configured before the incident happened, and no one knew this - or if they did, they didn't have the time or resources to fix it.

Read Post

Reach Security

Read more about The Shift Left of Boom: Making Cyber Threat Prevention Practical Again

The Hidden Cost of Secrets Sprawl

Oct 30, 2025 By Soujanya Ain In GitGuardian

Manual secrets management costs organizations $172,000+ annually per 10 developers. Discover the hidden productivity drain, security risks, and how automation can recover at least 1.2 FTE worth of capacity.

Read Post

GitGuardian

Read more about The Hidden Cost of Secrets Sprawl

Scanning GitHub Gists for Secrets with Bring Your Own Source

Oct 27, 2025 By Anna Nabiullina In GitGuardian

Developers treat GitHub Gists as a "paste everything" service, accidentally exposing secrets like API keys and tokens. BYOS lets you scan and monitor these blind spots.

Read Post

GitGuardian

Read more about Scanning GitHub Gists for Secrets with Bring Your Own Source

Building Chromegg: A Chrome Extension for Real-Time Secret Detection

Oct 20, 2025 By Andy Rea In GitGuardian

Ever accidentally pasted an API key into a web form? Chromegg is our new Chrome extension that scans form fields in real-time, alerting you BEFORE you submit secrets. Open-source & ready to use!

Read Post

GitGuardian

Read more about Building Chromegg: A Chrome Extension for Real-Time Secret Detection

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps Credential Hygiene: How to Eliminate CI/CD Secrets with Teleport

How To Use ggshield To Avoid Hardcoded Secrets [cheat sheet included]

From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps

Detect and block exposed credentials with Datadog Secret Scanning

How 1Password Environments makes secrets management simple for developers

Top Secrets Management Tools in 2026

The Shift Left of Boom: Making Cyber Threat Prevention Practical Again

The Hidden Cost of Secrets Sprawl

Scanning GitHub Gists for Secrets with Bring Your Own Source

Building Chromegg: A Chrome Extension for Real-Time Secret Detection

Monthly Archive

Follow Us