NHI Governance Is the Outcome. GitGuardian Is How You Get There

Learn how GitGuardian supports NHI governance with a secrets-first model that improves visibility, reduces sprawl, and helps teams manage machine identity risk.

EDITOR’S PICK

The State of Secrets Sprawl 2026: AI-Service Leaks Surge 81% and 29M Secrets Hit Public GitHub

Guillaume Valadon

5 Mar 2026 – 5 min read

all tags

DevSecOps

Securing The New Frontier in Developer Environments: Cloud IDEs

You might already be using a Cloud IDE for certain projects. This exciting evolution of the local dev environment has a lot of advantages but also brings some new risks. This article will help you stay safe as you embrace the cloud for your coding needs.

Dwayne McDaniel

21 Nov 2022 – 10 min read

Engineering

Efficiently Computing Permissions at Scale—Our Engineering Approach

Eugène, Staff Engineer at GitGuardian, explains the thinking and the technical choices behind one of the most anticipated features of this year: Teams.

Guardians

16 Nov 2022 – 8 min read

When it Comes to Secrets, How Mature is Your Organization?

DevSecOps

CISO Roadmap

Best practices

When it Comes to Secrets, How Mature is Your Organization?

We're happy to present you our Secrets Management Maturity Model, a model to help your organization make sense of its actual posture and how to improve it.

Thomas Segura

14 Nov 2022 – 3 min read

DevSecOps

Millions of .git folders exposed publicly by mistake

New research by CyberNews has revealed that there are millions of private git repositories that are, in fact, not all that private.

Mackenzie Jackson

9 Nov 2022 – 6 min read

Product News

Automate your way out of code security incidents with GitGuardian’s playbooks

Learn more about GitGuardian’s no-code workflows and how they can help you enjoy some respite from the manual and grunt work no security engineer ever enjoys.

Ziad Ghalleb

8 Nov 2022 – 5 min read

Frameworks & Regulations

Don't Tackle Security Alone: A Beginner's Guide To OWASP

Securing your apps can feel overwhelming and isolating. Fortunately, there is a community making free security tools and resources, that would welcome you at their events: OWASP

Dwayne McDaniel

4 Nov 2022 – 12 min read

Breach explained

Dropbox Suffers Data Breach From Phishing Attack, Exposing Customer and Employee Emails

Dropbox has confirmed they suffered a data breach involving a bad actor gaining access to credentials, data, and other secrets inside their internal GitHub code repositories.

Mackenzie Jackson

2 Nov 2022 – 4 min read

GitGuardian

Yves Mimeran Joins GitGuardian to Grow the Company’s Channel Partner Program

Yves joins GitGuardian as an accomplished channel sales leader with 20 years of experience in Senior Channel leadership positions with SecurityScorecard, EclecticIQ, Balabit.

Carole Winqwist

2 Nov 2022 – 1 min read

Best practices

Best practices for managing developer teams in GitHub Orgs

Are you looking for ways to manage your developer team better? GitHub Orgs is a great way to keep track of repositories, branches, and collaborators all in one place. In this article, we'll share some best practices for managing developer teams in GitHub Orgs.

Guest Expert

27 Oct 2022 – 7 min read

Conferences

SecureWV 2022 Lucky Th1rt3en: Malware, ransomware, and maturity models

SecureWV 2022 was the largest gathering of security professionals in the Mountain State ever. Read the highlights, including an in-depth look at ransomware and malware organizations.

Dwayne McDaniel

25 Oct 2022 – 7 min read

It Takes a Team to Solve Hardcoded Secrets

Product News

DevSecOps

It Takes a Team to Solve Hardcoded Secrets

We’re introducing a new Role-based Access Management (RBAC) system with “Teams” in your GitGuardian Internal Monitoring workspace. Bring Dev, Sec, and Ops together and fix hardcoded credentials faster than you ever thought possible!

Ziad Ghalleb

21 Oct 2022 – 6 min read

A Brief Introduction to SBOM - Software Bill of Materials - and How to Use it with CI

Supply Chain Security

DevSecOps

A Brief Introduction to SBOM - Software Bill of Materials - and How to Use it with CI

Learn more about what is a Software Bills Of Materials, why use it, what are the standards and how to automate it with Continuous Integration.

Guest Expert

19 Oct 2022 – 4 min read

NHI Governance Is the Outcome. GitGuardian Is How You Get There

Dwayne McDaniel

MOST POPULAR

Trivy’s March Supply Chain Attack Shows Where Secret Exposure Hurts Most

Guillaume Valadon

GitHub Copilot Security and Privacy Concerns: Understanding the Risks and Best Practices

Dwayne McDaniel

EDITOR’S PICK

The State of Secrets Sprawl 2026: AI-Service Leaks Surge 81% and 29M Secrets Hit Public GitHub

Anna Nabiullina

2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk

Guillaume Valadon

Securing The New Frontier in Developer Environments: Cloud IDEs

Dwayne McDaniel

Efficiently Computing Permissions at Scale—Our Engineering Approach

Guardians

When it Comes to Secrets, How Mature is Your Organization?

Thomas Segura

Millions of .git folders exposed publicly by mistake

Mackenzie Jackson

Automate your way out of code security incidents with GitGuardian’s playbooks

Ziad Ghalleb

Don't Tackle Security Alone: A Beginner's Guide To OWASP

Dwayne McDaniel

Dropbox Suffers Data Breach From Phishing Attack, Exposing Customer and Employee Emails

Mackenzie Jackson

Yves Mimeran Joins GitGuardian to Grow the Company’s Channel Partner Program

Carole Winqwist

Best practices for managing developer teams in GitHub Orgs

Guest Expert

SecureWV 2022 Lucky Th1rt3en: Malware, ransomware, and maturity models

Dwayne McDaniel

It Takes a Team to Solve Hardcoded Secrets

Ziad Ghalleb

A Brief Introduction to SBOM - Software Bill of Materials - and How to Use it with CI

Guest Expert

Start your journey to secrets-free source code