BSides San Antonio 2026: Following Trust Across Applications, Cloud, and Compliance

Sessions at BSidesSATX 2026 connected runtime secrets, cloud identity permissions, compliance evidence, and, ultimately, the human side of security.

EDITOR’S PICK

The State of Secrets Sprawl 2026: AI-Service Leaks Surge 81% and 29M Secrets Hit Public GitHub

Guillaume Valadon

5 Mar 2026 – 5 min read

all tags

Conferences

BSides San Antonio 2026: Following Trust Across Applications, Cloud, and Compliance

Sessions at BSidesSATX 2026 connected runtime secrets, cloud identity permissions, compliance evidence, and, ultimately, the human side of security.

Dwayne McDaniel

22 Jun 2026 – 6 min read

How Five PostgreSQL Optimizations Sped Up Our Dashboard

Engineering

GitGuardian

How Five PostgreSQL Optimizations Sped Up Our Dashboard

GitGuardian helps security teams detect leaked secrets across dozens of integrations, all converging in one place: our dashboard. As our data volume grew, some pages started taking several seconds to load.

Valentin Murat

18 Jun 2026 – 9 min read

Product News

Extending Our Mission With Developer Endpoint Protection

Developer laptops are the most unmonitored credential store in your stack. GitGuardian's new Endpoint Protection finds every credential on every machine before infostealers do.

Soujanya Ain

16 Jun 2026 – 5 min read

Artificial Intelligence

Gitguardian Agent Skills: Secret Detection and Remediation For AI-Assisted Development

With these skills, any AI coding assistant, including Claude Code, Cursor, or Codex, can now scan code for secrets and provide guided remediation within developer workflows.

Dwayne McDaniel

15 Jun 2026 – 9 min read

Conferences

KCD New York 2026: Trust, Agents, and the Work Behind the Work

The 2026 Kubernetes Community Day in NYC made trust an execution problem, linking zero trust APIs, agent governance, CVE evidence, and sustainable open source work.

Dwayne McDaniel

12 Jun 2026 – 8 min read

Non-Human Identity

You Can't Secure What You Can't See: Making Non-Human Identities Governable

Non-human identities (NHIs) authenticate pipelines, connect microservices, pull from secret managers, and provision cloud resources around the clock. They are also, for most security teams, almost completely invisible. Because there has never been a single place to see all of them at once.

Dwayne McDaniel

10 Jun 2026 – 4 min read

Conferences

Reliability Lessons From the Edges at SREday NYC

Reliability leaders and subject matter experts at SREday NYC examined how AI, faster delivery, and complex systems increase the need for grounded operational context.

Dwayne McDaniel

9 Jun 2026 – 8 min read

Conferences

Designing Identity for the Agentic Enterprise: The Okta AI Identity Summit

Speakers made it clear that agentic AI is already operating across enterprise workflows. Learn why identity must govern ownership, permissions, actions, and accountability.

Dwayne McDaniel

5 Jun 2026 – 7 min read

Breach explained

Four Credential-Harvesting Campaigns Hit Open Source Ecosystems in Two Weeks

The pace is not slowing down. Between May 18 and June 1, 2026, four distinct supply chain campaigns swept through npm, PyPI, Crates.io, GitHub Actions, and Composer.

Anna Nabiullina

3 Jun 2026 – 3 min read

How We Migrated the Heart of Our Platform to Rust

Engineering

GitGuardian

How We Migrated the Heart of Our Platform to Rust

By rewriting our secret detection engine in Rust, we made our engine more than three times as fast. But not without making it four times slower along the way.

Kevin Westphal

1 Jun 2026 – 7 min read

Secrets Management

Top 16 Secrets Management Tools and Platforms for 2026 (Compared)

Compare the best secrets management tools for 2026. Reviews of open source, multi-cloud, Kubernetes, and DevOps secrets management solutions for enterprise teams.

Greg Bulmash

31 May 2026 – 21 min read

Initial Access Changed, The Attack Path Did Not: Findings From The Verizon 2026 DBIR

DevSecOps

CISO Roadmap

Initial Access Changed, The Attack Path Did Not: Findings From The Verizon 2026 DBIR

This year's report shows how credential sprawl across DevOps, SaaS, CI/CD, the cloud, and developer laptops turns initial access into operational impact.

Dwayne McDaniel

28 May 2026 – 8 min read

BSides San Antonio 2026: Following Trust Across Applications, Cloud, and Compliance

Dwayne McDaniel

MOST POPULAR

How We Got a CISA GitHub Leak Taken Down in Under a Day

Guillaume Valadon

Exposing secrets on GitHub: What to do after leaking credentials and API keys

Mackenzie Jackson

EDITOR’S PICK

The State of Secrets Sprawl 2026: AI-Service Leaks Surge 81% and 29M Secrets Hit Public GitHub

Anna Nabiullina

2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk

Guillaume Valadon

BSides San Antonio 2026: Following Trust Across Applications, Cloud, and Compliance

Dwayne McDaniel

How Five PostgreSQL Optimizations Sped Up Our Dashboard

Valentin Murat

Extending Our Mission With Developer Endpoint Protection

Soujanya Ain

Gitguardian Agent Skills: Secret Detection and Remediation For AI-Assisted Development

Dwayne McDaniel

KCD New York 2026: Trust, Agents, and the Work Behind the Work

Dwayne McDaniel

You Can't Secure What You Can't See: Making Non-Human Identities Governable

Dwayne McDaniel

Reliability Lessons From the Edges at SREday NYC

Dwayne McDaniel

Designing Identity for the Agentic Enterprise: The Okta AI Identity Summit

Dwayne McDaniel

Four Credential-Harvesting Campaigns Hit Open Source Ecosystems in Two Weeks

Anna Nabiullina

How We Migrated the Heart of Our Platform to Rust

Kevin Westphal

Top 16 Secrets Management Tools and Platforms for 2026 (Compared)

Greg Bulmash

Initial Access Changed, The Attack Path Did Not: Findings From The Verizon 2026 DBIR

Dwayne McDaniel

Start your journey to secrets-free source code