%term

What the Mythos-Ready Briefing Says About Credentials

Apr 24, 2026 By Ben MartinMooney In GitGuardian

The Mythos-ready briefing names secrets rotation, NHI governance, and honeytokens as critical controls. Zero-days don't replace credential attacks; they accelerate them. Credential security deserves to move up every CISO's priority list.

Read Post

GitGuardian

Read more about What the Mythos-Ready Briefing Says About Credentials

No Off Season: Three Supply Chain Campaigns Hit npm, PyPI, and Docker Hub in 48 Hours

Apr 23, 2026 By Guillaume Valadon In GitGuardian

Three supply chain attacks hit npm, PyPI, and Docker Hub between April 21–23, 2026. All three targeted secrets: API keys, cloud credentials, SSH keys, and tokens from developer environments and CI/CD pipelines.

Read Post

GitGuardian

Read more about No Off Season: Three Supply Chain Campaigns Hit npm, PyPI, and Docker Hub in 48 Hours

GitGuardian Can Now Monitor Your Gerrit Repositories To Help You Fight Secrets Sprawl

Apr 23, 2026 By GitGuardian In GitGuardian

In this video, Romain Jouhannet, Product Manager at GitGuardian, talks with Dwayne McDaniel, Developer Advocate at GitGuardian about the platform's new native support for Gerrit as a VCS source. Gerrit is widely used for enterprise code review workflows, often hosting sensitive internal repositories. You can now connect your Gerrit instance to GitGuardian to detect secrets exposed across your repositories and commit histories, with the same experience as our other VCS integrations.

View Video

GitGuardian

Read more about GitGuardian Can Now Monitor Your Gerrit Repositories To Help You Fight Secrets Sprawl

SnowFROC 2026: Secure Defaults, Real Trust, and a Better Layer on Top

Apr 22, 2026 By Dwayne McDaniel In GitGuardian

This year's Devner OWASP event showed why modern AppSec depends on secure defaults, stronger provenance, and security controls that appear where developers make decisions.

Read Post

GitGuardian

Read more about SnowFROC 2026: Secure Defaults, Real Trust, and a Better Layer on Top

GitGuardian Now Flags Overprivileged and Admin Secrets Across AWS, Entra, And Okta Identities

Apr 22, 2026 By GitGuardian In GitGuardian

GitGuardian NHI Governance will now automatically flag machine identities that carry admin access and have more privileges than they actually use. GitGuardian NHI Governance has been able to surface policy breaches for long-lived secrets, Duplicated Secrets, and, of course, if the secrets have been leaked publicly or internally.

View Video

GitGuardian

Read more about GitGuardian Now Flags Overprivileged and Admin Secrets Across AWS, Entra, And Okta Identities

Vercel April 2026 Incident: Non-Sensitive Environment Variables Need Investigation Too

Apr 20, 2026 By Guillaume Valadon In GitGuardian

Vercel's Context.ai breach exposed environment variables that weren't marked sensitive. Learn how to pull and scan your secrets with GitGuardian.

Read Post

GitGuardian

Read more about Vercel April 2026 Incident: Non-Sensitive Environment Variables Need Investigation Too

ATLSECCON 2026: Context, Identity, and Restraint in Modern Security

Apr 17, 2026 By Dwayne McDaniel In GitGuardian

From AI agents to identity abuse, ATLSECCON 2026 focused on how security teams can reduce exposure, improve visibility, and make trust enforceable while moving ever faster.

Read Post

GitGuardian

Read more about ATLSECCON 2026: Context, Identity, and Restraint in Modern Security

AI Agents Authentication: How Autonomous Systems Prove Identity

Apr 16, 2026 By Thomas Segura In GitGuardian

AI agents need to authenticate with numerous systems, making AI authentication a crucial security boundary that determines blast radius, revocability, and long-term governance risk.

Read Post

GitGuardian

Read more about AI Agents Authentication: How Autonomous Systems Prove Identity

The Future Of GitHub Actions Security And What You Can Do Right Now

Apr 15, 2026 By Dwayne McDaniel In GitGuardian

GitHub is hardening Actions with deterministic dependencies, scoped secrets, and policy controls. Teams still need immediate detection and remediation for today’s risk.

Read Post

GitGuardian

Read more about The Future Of GitHub Actions Security And What You Can Do Right Now

A Look At GitGuardian's ML-Powered Contextual EnrichmentAnd Incident Scoring

Apr 14, 2026 By GitGuardian In GitGuardian

In this quick introductory video, Mathieu Bellon, Senior Product Manager at GitGuardian, sits down with Dwayne McDaniel, Developer Advocate, to cover some of the advancements GitGuardian has made by integrating machine learning directly into the secrets security platform. Mathieu describes how engineers and responders can save serious time as by automating contextual analysis, geving the humans in the loop with the best information to be able to take an informed action when it comes to secrets leaks. They also discuss the security implications and where teams can look if they want to opt out or bring their own agents.

View Video

GitGuardian

Read more about A Look At GitGuardian's ML-Powered Contextual EnrichmentAnd Incident Scoring

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

What the Mythos-Ready Briefing Says About Credentials

No Off Season: Three Supply Chain Campaigns Hit npm, PyPI, and Docker Hub in 48 Hours

GitGuardian Can Now Monitor Your Gerrit Repositories To Help You Fight Secrets Sprawl

SnowFROC 2026: Secure Defaults, Real Trust, and a Better Layer on Top

GitGuardian Now Flags Overprivileged and Admin Secrets Across AWS, Entra, And Okta Identities

Vercel April 2026 Incident: Non-Sensitive Environment Variables Need Investigation Too

ATLSECCON 2026: Context, Identity, and Restraint in Modern Security

AI Agents Authentication: How Autonomous Systems Prove Identity

The Future Of GitHub Actions Security And What You Can Do Right Now

A Look At GitGuardian's ML-Powered Contextual EnrichmentAnd Incident Scoring

Monthly Archive

Follow Us