Secrets Management
API Key Security: 7 Enterprise-Proven Methods to Prevent Costly Data Breaches
In this blog, we will navigate through a few enterprise-proven methods to make API key more secure. Read on!
MOST POPULAR
all tags
other
Balancing AI Performance and Safety: Lessons from PyData Berlin
Would you trust AI to call 911? GitGuardian's ML engineer Nicolas posed this question at PyData Berlin, sparking a discussion on integrating ML into critical systems, debunking AI myths, and balancing innovation with safety in AI deployment.
Elevating Cloud Security: Highlights from CloudNativeSecurityCon 2024
Explore insights from CloudNativeSecurityCon 2024, including securing machine identities, digesting SLSA and GUAC, and the impact of quality documentation.
Container Security Scanning: Vulnerabilities, Risks and Tooling
Container security is crucial in the age of microservices and DevOps. Learn about common container vulnerabilities, container security scanning, and popular tools to secure your containers in this comprehensive guide.
ML-powered feature FP Remover cuts 50% of False Positives
GitGuardian is pushing its secrets detection engine precision to new heights. We enhanced our detection capabilities with Machine Learning to cut the number of false positives by half. Security and engineering teams will spend significantly less time reviewing and dismissing false alerts.
Unlocking the Full Potential of GitGuardian: Empowering Developers In Code Security
Improve workflows with collaborative incident management to minimize vulnerabilities and enhance productivity with GitGuardian while empowering developers via ggshield.
CodeSecDays: Insights and Highlights from GitGuardian's Security Event
CodeSecDays provided an invaluable platform for the French AppSec community to come together, share insights, address challenges, and explore best practices for securing digital infrastructures. Here are the key highlights.
BSides Boulder 2024: Improving Security For All In The High Desert
Discover insights from the latest BSides Boulder, focused on AI in cybersecurity, Git mysteries, and exploiting RCEs, along with many great community conversations.
CVE of the month, CheckPoint Security Gateway exploit CVE-2024-24919
This month we dive into CheckPoints CVE-2024-24919 to explain what this vulnerability does and why we have seen it being used in the wild already!
Streamlining CLI Authentication: Implementing OAuth Login in Python
When building an application that requires user authentication, implementing a secure login flow is critical. In this article, we'll walk through how we created a robust OAuth login flow for ggshield, our Python-based command line tool, to streamline the onboarding process for our users.
Why SAST + DAST can't be enough
Static and dynamic app testing are cornerstones for any comprehensive AppSec program, yet they rarely rise up to the challenges of fully securing modern software. Discover why secrets are one of their critical blind spots.
Red Team Chronicles: Your trash my treasure
The Red Team Chronicles is a hacker comic that this month is looking at the endeavors of Jason Haddix and how he and his team got access to a bank via a shred bin using some thrifty techniques.
