Conferences
ConFoo 2026: Guardrails for Agentic AI, Prompts, and Supply Chains
Read the takeaways from ConFoo 2026, including putting guardrails where requests happen, auditing tool calls, treat dependency updates like production access.
MOST POPULAR
all tags
other
Why ChatGPT is a security concern for your organization (even if you don't use it)
ChatGPT may not be used by all organizations and may even be banned. But that doesn't mean you don't have exposure to the security risks it contains. This post looks at why ChatGPT should be part of your threat landscape.
![Best Practices for Scanning and Securing Infrastructure as Code (IaC)[cheat sheet included]](/content/images/size/w600/2023/04/23W15-blog-GitGuardian-IAC-Cheatsheet.png)
Best Practices for Scanning and Securing Infrastructure as Code (IaC)[cheat sheet included]
Discover the best practices and tools to scan and secure your infrastructure as code (IaC) throughout the DevOps software development lifecycle. From threat modeling to monitoring, this comprehensive guide offers valuable insights to improve the security, reliability, and consistency of your IaC.
Launching GitGuardian Honeytoken: your powerful ally in detecting supply chain breaches!
What if you could detect intrusions and code leaks in your software supply chain? Introducing GitGuardian Honeytoken, the solution that protects your software supply chain against potential intrusions on SCM systems, CI/CD pipelines, software artifact registries, and more.
Innovating at the Intersection of Ops and Product
This month we had the pleasure of chatting with Dhia, ProductOps manager and data analyst.
9 Extraordinary Terraform Best Practices That Will Rock Your Infrastructure
Master Terraform in the cloud: play with the console, know your infrastructure, avoid mistakes, separate infrastructure from configuration, make code declarative, and understand vendor lock-in.
GitGuardian Secrets Detectors Q1 2023 Wrap-Up
GitGuardian's Q1 wrap-up highlights our progress in detecting secrets, introducing new secret detectors, and committing to code security. With six new detectors released in Q1, GitGuardian remains the go-to solution for developers looking to write more secure code.
Cyphercon 6
Nearly 1500 cybersecurity professionals gathered in Milwaukee for Cpyphercon 6. Read the highlights from the largest hacker event in Wisconsin
Twitter’s leak illustrates why source code should never be sensitive
Twitter's source code was recently leaked publicly on a GitHub repository. This blog post looks at exactly what happened and what security consequences could stem from this leak.
Review your hardcoded secrets incidents in Kondukto’s AppSec orchestration platform
Kondukto and GitGuardian have teamed up to provide an integration that brings together their knowledge in AppSec orchestration and automated secrets detection.
![Remediating Incidents With The GitGuardian API [cheat sheet included]](/content/images/size/w600/2023/03/23W12-blog-GitGuardian-API-Cheatsheet.png)
Remediating Incidents With The GitGuardian API [cheat sheet included]
The GitGuardian API lets you remediate your secret incidents from any platform you prefer. We are proud to release a new demo application to help you learn how to automate your workflows.
GitHub Exposed A Private SSH Key: What You Need To Know
Everyone has secrets leakage incidents from time to time, even massive players like GitHub. This is a good reminder we all need to stay vigilant and embrace the right tools to help us stay safe.
GitGuardian vs. Custom-Built Secrets Detection Tools
DIY or open-source secrets detection can seem cost-effective and customizable initially... until you start hitting the first obstacles like scalability, developer experience (DX), or deep application security expertise. Read on to find out how GitGuardian can help you rise above these!
