MOST POPULAR
all tags
other
Probably Secure: A Look At The Security Concerns Of Deterministic Vs Probabilistic Systems
Learn why deterministic security remains essential in an AI-driven world and how GitGuardian combines probability and proof for safe, auditable development.
The Promise and Pitfalls of Ephemeral Identities
Short-lived credentials reduce exposure – but they aren’t secure by default. Here’s what ephemeral identity gets right, and where it can fail.
The Identity Revolution: How AI Agents Are Reshaping Security Architecture
Read key insights from GitGuardian SecDays Virtual 2025 on securing the future of autonomous AI agents.
Symmetric Cryptography in Practice: A Developer's Guide to Key Management
Symmetric cryptography powers everything from HTTPS to JWT tokens, but key management remains a significant challenge. This developer guide covers three critical use cases—session keys, self-use keys, and pre-shared keys—with practical strategies for secure generation, rotation, and storage.
Q2 2025 Recap: GitGuardian Sharpens the Edge on Secrets Security and Agentic AI Protection
Explore enhanced secrets security across code, collaboration tools, & public repos. Discover new Agentic AI protection, NHI lifecycle automation, and smarter incident management.
GitHub's Default Push Protection: Enhancing Secrets Protection with Limitations to Consider
GitHub's Push Protection is now enabled by default for all public repositories, a big milestone for open-source security! Find out the key points you need to keep in mind before using it to safeguard your code repositories.
The Non-Human Identity Crisis: Key Insights from GitGuardian SecDays Virtual 2025
Discover key insights from GitGuardian SecDays 2025 on the Non-Human Identity (NHI) crisis. Learn how to tackle secrets sprawl, go secretless, and secure machine identities.
From Secrets Sprawl to Secretless: Snowflake's Journey through NHI Lifecycle Management
Learn how Snowflake is tackling NHIs, from secrets sprawl to a secretless architecture using GitGuardian for detection and Aembit for prevention.
GitGuardian Launches its MCP Server: Putting Secrets Security in the Developers' Hands
Empower your developers with GitGuardian's new MCP Server. Embed AI-driven secrets security directly into your IDE, streamline incident remediation, and secure code in real time.
Exploiting Public APP_KEY Leaks to Achieve RCE in Hundreds of Laravel Applications
Laravel APP_KEY leaks enable RCE via deserialization attacks. Collaboration with Synacktiv scaled findings to 600 vulnerable applications using 260K exposed keys from GitHub. Analysis reveals 35% of exposures coincide with other critical secrets including database, cloud tokens, and API credentials.
Multicloud Security Architecture
Using multiple cloud service providers isn't all benefits, it has its challenges. Today, let's have a look at multicloud: What it is, what are the challenges, especially security challenges, and what are the best practices towards a secure multicloud architecture.
