Why Understanding Your Secrets is the Key to Faster Remediation

Up to 27 days to fix a leaked secret? We feel your pain. Explore how contextual secrets management helps you take control, cut remediation time, and strengthen your security posture. Don't just detect, understand your secrets.

Soujanya Ain

6 Mar 2025 – 5 min read

Tiexin Guo

27 Jan 2025 – 10 min read

GitHub Copilot Security and Privacy Concerns: Understanding the Risks and Best Practices

Dwayne McDaniel

30 Sep 2024 – 7 min read

EDITOR’S PICK

Solving Secrets Management Challenges for NHIs: GitGuardian Integration with HashiCorp Vault

Ferdinand Boas

27 Feb 2025 – 6 min read

Protecting the Backbone of Modern Development: Scanning Secrets in Container Registries

Ferdinand Boas

23 Jan 2025 – 5 min read

all tags

Conferences

BSidesSF 2024: A Community Event Anchored To Hope For The Future Of Security

Highlights from the largest ever BSidesSF, which brought cybersecurity professionals together to face the new issues AI brings, advanced threat actors, and scaling security.

Dwayne McDaniel

10 May 2024 – 6 min read

GitGuardian

Understanding GitGuardian's Self-Hosted Solution

If you need to keep your data on your network but still want the power and convenience of GitGuardian, we've got you covered.

Greg Bulmash

6 May 2024 – 4 min read

Supply Chain Security

Vulnerability of the Month - Controversy of the JetBrains TeamCity CVE-2024-27198 & CVE-2024-27199

This month we dive into CVE-2024-27198 for JetBrains TeamCity and the controversy surrounding the patching process that contributed to it being exploited in the wild.

Mackenzie Jackson

3 May 2024 – 3 min read

Frameworks & Regulations

How Software Composition Analysis (SCA) Addresses President Biden's Executive Order (EO) 14028

EO 14028 is bringing a lot of new security documentation requirements with it. Here's how SCA can help with creating that documentation.

Greg Bulmash

2 May 2024 – 3 min read

Conferences

PHP[TEK] 2024: Pioneering the Future of Web Development in Chicago

Explore insights from PHP experts who gathered from all around the world to discuss web development innovations, embracing change, and securely maintaining our code.

Dwayne McDaniel

30 Apr 2024 – 7 min read

Secrets detection

Zombie Leaks: Unrevoked Secrets Lurking on GitHub

Don't let zombies haunt your security posture.

Thomas Segura

29 Apr 2024 – 5 min read

Open-Source Software Security

Open-source software security is crucial in today's cloud-native world. Learn about vulnerabilities, dependencies, and tools to improve security in this in-depth blog post.

Guest Expert

26 Apr 2024 – 12 min read

Conferences

Insights from HackSpaceCon 2024: Navigating Cybersecurity Challenges Ahead

Dive into our highlights from HackSpaceCon 2024, covering red teaming, AI, and securing critical infrastructure to prepare for ever-evolving cyber threats.

Dwayne McDaniel

25 Apr 2024 – 7 min read

DevSecOps

Secure-by-Design Software in DevSecOps

In this new series, CJ May shares his expertise in implementing secure-by-design software processes. The second part of his DevSecOps program is all about implementing secure-by-design software pipelines.

Guest Expert

24 Apr 2024 – 14 min read

Why Understanding Your Open Source Licenses Matters

Fully understanding open-source licenses is crucial for your projects and organization. Let's look at where these licenses come from and how they can impact your applications.

Dwayne McDaniel

18 Apr 2024 – 5 min read

Breach explained

Early Lessons from the Sisense Breach

Business intelligence company Sisense has seen secrets compromised in its GitLab repositories, leading to a siphoning of its customers' sensitive data.

Thomas Segura

15 Apr 2024 – 3 min read

Supply Chain Security

Why you need an SBOM (Software Bill Of Materials)

SBOMs are security analysis artifacts becoming required by more companies due to internal policies and government regulation. If you sell or buy software, you should know the what, why, and how of the SBOM.

Greg Bulmash

12 Apr 2024 – 6 min read

Why Understanding Your Secrets is the Key to Faster Remediation

Soujanya Ain

MOST POPULAR

Authentication and Authorization Best Practices

Tiexin Guo

GitHub Copilot Security and Privacy Concerns: Understanding the Risks and Best Practices

Dwayne McDaniel

EDITOR’S PICK

Solving Secrets Management Challenges for NHIs: GitGuardian Integration with HashiCorp Vault

Ferdinand Boas

Protecting the Backbone of Modern Development: Scanning Secrets in Container Registries

Ferdinand Boas

BSidesSF 2024: A Community Event Anchored To Hope For The Future Of Security

Dwayne McDaniel

Understanding GitGuardian's Self-Hosted Solution

Greg Bulmash

Vulnerability of the Month - Controversy of the JetBrains TeamCity CVE-2024-27198 & CVE-2024-27199

Mackenzie Jackson

How Software Composition Analysis (SCA) Addresses President Biden's Executive Order (EO) 14028

Greg Bulmash

PHP[TEK] 2024: Pioneering the Future of Web Development in Chicago

Dwayne McDaniel

Zombie Leaks: Unrevoked Secrets Lurking on GitHub

Thomas Segura

Open-Source Software Security

Guest Expert

Insights from HackSpaceCon 2024: Navigating Cybersecurity Challenges Ahead

Dwayne McDaniel

Secure-by-Design Software in DevSecOps

Guest Expert

Why Understanding Your Open Source Licenses Matters

Dwayne McDaniel

Early Lessons from the Sisense Breach

Thomas Segura

Why you need an SBOM (Software Bill Of Materials)

Greg Bulmash

Start your journey to secrets-free source code