![IAM Best Practices [cheat sheet included]](/content/images/size/w600/2023/01/23W04-blog-IAM-CHEATSHEET.png)
Cheat sheets
IAM Best Practices [cheat sheet included]
Download our cheat sheet on IAM, Identity and Access Management, best practices. It will help you make your cloud environments more secure.
MOST POPULAR
all tags
other
IAM Best Practices [cheat sheet included]
Download our cheat sheet on IAM, Identity and Access Management, best practices. It will help you make your cloud environments more secure.
How to Handle Secrets in Python
DevOps engineers must handle secrets with care. In this series, we summarize best practices for leveraging secrets with your everyday tools.
Azure repos native integration with GitGuardian
DevOps teams and developers can now bring the power of automated secrets detection and remediation to their Azure DevOps repositories.
Top 10 Practices for Secure Software Development
Developer security practices are about adding security at each software development stage. Here’s a list of top developer security practices to follow.
Forrester Research: Show, Don’t Tell, Your Developers How To Write Secure Code
If you’re a CISO, VP of Security, or a Staff Security Engineer and still wondering whether your developers own the keys to application security, this Forrester report is for you. Get your complimentary copy now, courtesy of GitGuardian.
10 Tips to Optimize PostgreSQL Queries in Your Django Project
Philippe is back, this time joined by Laurent, to reveal their best tips & tricks to make Django and Postgres the best friends in the world.
How To Secure Your CI/CD Pipeline
After CircleCI breach, it is a good moment for any team relying on CI/CD infrastructure to review their pipeline security as there are some steps they can take to be proactive.
Open Policy Agent with Kubernetes - Tutorial (Pt. 2)
This time, we will see how to get a deeper integration between OPA and Kubernetes with Gatekeeper and native CRD-based policies.
GitGuardian Secrets Detectors 2022 Wrap-Up
The GitGuardian team is still striving to provide the broadest secrets detection engine, helping you find and fix all sorts of hardcoded secrets! Learn more about the specific and generic detectors our team has released in 2022 in this post.
Open Policy Agent with Kubernetes - Tutorial (Pt. 1)
Let's get our hands dirty with policy as code and write our first OPA policies for a Kubernetes environment.
Event-Driven Automation using New Custom Webhooks
New custom webhooks are now available to help you orchestrate your incident remediation workflows and processes outside of your GitGuardian Internal Monitoring workspace!
![Infrastructure as Code Security [Security Zines]](/content/images/size/w600/2022/12/blog-SecurityZines-iac-security.png)
Infrastructure as Code Security [Security Zines]
With great power comes great responsibility - and that's not just for superheroes. It's also true for your code!
BSides SLC: Community, Fun, And Security Best Practices In Salt Lake City
BSidesSLC brought together security experts, developers and students from all over Utah and beyond. Read the highlights, featuring hands on labs, sessions and hackable badges.
Honeytokens - Protect Your Holy Grail
You must choose. But choose wisely. For as the True Grail will bring you life. The False Grail will take it from you.
Growing as an engineer at GitGuardian
Hi Laurent! Can you tell us about your role at GitGuardian? Hi! I've been working at GitGuardian for four years now, making me the person with the longest tenure! For a few months, I have been a Staff Engineer, meaning I'm an expert on
Thinking Like a Hacker: Finding Source Code Leaks on GitHub
Continuing our series about potential attack scenarios, learn how a very easy configuration mistake on GitHub can lead to a major security breach.
The State of Security in Australia: HackSydney and BSides give insight into security post-Medibank and Optus
Cybersecurity in Australia has moved well and truly into the focus of the mainstream media and the everyday public. This year we saw two catastrophic security breaches with Optus, an Australian telecom provider, and Medibank, one of the largest health insurance providers in Australia.
9 Things to Consider When Choosing an SCA Tool
Software composition analysis is an essential part of application security. Here are the important factors to consider when selecting an SCA scanner to be sure it is well-suited to your needs.
What is Policy-as-Code? An Introduction to Open Policy Agent
Learn the benefits of policy as code and start testing your policies for cloud-native environments.
The Ultimate Guide to GitHub Backups
In such a fast-developing world, it becomes more and more important to make sure the source code and its metadata are backed up in case of an emergency. Learn everything you need to know about how to backup a GitHub repository.
CyberTech NYC 2022: Securing The Future Together
GitGuardian joined dozens of security companies in New York City to share knowledge about the ever-shifting enterprise landscape. Here are just a few of the highlights from CyberTech NYC 2022.
Securing The New Frontier in Developer Environments: Cloud IDEs
You might already be using a Cloud IDE for certain projects. This exciting evolution of the local dev environment has a lot of advantages but also brings some new risks. This article will help you stay safe as you embrace the cloud for your coding needs.
Introducing Infrastructure as Code Security
The GitGuardian Internal Monitoring platform will now include Infrastructure as Code (IaC) scanning to help organizations protect their infrastructure at the source.
Efficiently Computing Permissions at Scale—Our Engineering Approach
Eugène, Staff Engineer at GitGuardian, explains the thinking and the technical choices behind one of the most anticipated features of this year: Teams.
When it Comes to Secrets, How Mature is Your Organization?
We're happy to present you our Secrets Management Maturity Model, a model to help your organization make sense of its actual posture and how to improve it.
