Here is a take away list of additional readings from the October webinar Secrets Management: How to Scale Your Tech Teams’ Knowledge

Promyze/Homepage
Promyze, the platform to define and share your best coding practices through collective code review workshops.
GitGuardian: Git Security Scanning & Secrets Detection
Level up your code security with GitGuardian: Scan your Git Repos in Real-Time for Secrets ✔️ Free Trial ✔️ Used by 150k+ developers ✔️ Enterprise Software
GitHub - GitGuardian/ggshield: Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service. - GitH...

Further Reading

Creating a pre-commit git hook to detect secrets
In this tutorial we are going to run through how to create a pre-commit git hook using GitGuardian Shield to detect secrets before they enter your repository.
Understanding secret sprawl and the attack surface - GitGuardian Blog
The first in a series of articles that will take a deep dive into secrets within source code: In this article, we will look at the concept of secret sprawl, the unwanted distribution of secrets through multiple systems, and how we can prevent it.
Git Secrets: Why Secrets inside Git are such a Problem - GitGuardian Blog
Despite secrets like API keys, OAuth tokens, certificates and passwords being extremely sensitive, it is common for these to leak into git repositories through source code. This article looks at why this is true and how we can prevent it.
Finding Credentials in Source Code - Secrets in source code - GitGuardian Blog
This article will expose how our algorithms detect secrets and what we have learnt from scanning, literally, billions of commits.
Code & secret management best practices [2020] - GitGuardian Blog
Storing and managing secrets [https://www.gitguardian.com/secrets-detection/secret-sprawl#1] like API keys and other credentials can be challenging, even the most careful policies can sometimes be circumvented in exchange for convenience. We have compiled a list of some of the best practices to help…
Make code reviews less time-consuming
Code reviews take an increasing place among software developers’ teams. Recent reports on that topic...
Easily share best coding practices from your IDE with your team
🤝 Why sharing best coding practices? Each developer has their own experience and their...

Next Event

Maintaining code security through code quality - Crowdcast
Register now for Mackenzie Jackson’s event on Crowdcast, scheduled to go live on Wednesday December 08, 2021 at 5:00 pm CET.