OIDC for Developers: Reasons Your Auth Integration Could Be Broken

Why outsourcing auth doesn't mean outsourcing risk.

From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps

Secrets don’t belong in plaintext. GitGuardian's Push-to-Vault automates vaulting exposed secrets, helping security teams scale governance and reduce incident fatigue.

Mutual TLS (mTLS) Authentication - A Complete Guide

mTLS, or mutual Transport Layer Security, is a mechanism that establishes two-way authentication between two parties, ensuring they are who they claim to be.

A Complete Guide to Transport Layer Security (TLS) Authentication

Data security is non-negotiable. Transport Layer Security (TLS) authentication stands as the cornerstone for the protection of data in transit. When it comes to protecting enterprise APIs, systems, and identities, the importance of TLS auth cannot be overstated.

Tiexin Guo

25 Nov 2025 – 19 min read

DevSecOps

OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

Discover what’s changed in the OWASP 2025 Top 10 and how GitGuardian helps you mitigate risks like broken access control and software supply chain failures.

Dwayne McDaniel

24 Nov 2025 – 5 min read

DevSecOps

How to Handle Secrets in CI/CD Pipelines

Securely managing secrets within the CI/CD environment is super important. Mishandling secrets can expose sensitive information, potentially leading to unauthorized access, data breaches, and compromised systems.

Tiexin Guo

29 Sep 2025 – 14 min read

Make Deployments Great Again: How to Use Helm with Continuous Deployment (CD)

DevSecOps

Tutorials

Make Deployments Great Again: How to Use Helm with Continuous Deployment (CD)

Learn how to automate Helm deployments with GitOps, using Argo CD for continuous delivery. Seamlessly handle secrets, pod auto-restart, and version propagation in Kubernetes with this production-ready integration.

Tiexin Guo

14 Sep 2025 – 12 min read

DevSecOps

Automatic Secrets Redaction at Runtime: Building a GitGuardian Lambda Extension

I'm going to show you how to build a Lambda Runtime API extension that automatically scans and redacts sensitive information from your function responses, without touching a single line of your existing function code.

Andy Rea

2 Sep 2025 – 7 min read

DevSecOps

How to Securely Access AWS from your EKS Cluster

Discover EKS Pod Identity Association—the modern, secure way to grant AWS permissions without the operational overhead of OIDC providers. No more duplicated IAM roles across clusters, no more trust policy updates every time you scale.

Tiexin Guo

11 Aug 2025 – 6 min read

DevSecOps

Multicloud Security Architecture

Using multiple cloud service providers isn't all benefits, it has its challenges. Today, let's have a look at multicloud: What it is, what are the challenges, especially security challenges, and what are the best practices towards a secure multicloud architecture.

Tiexin Guo

8 Jul 2025 – 15 min read

Investigating, prioritizing, and remediating thousands of hardcoded secrets incidents

Best practices

DevSecOps

Investigating, prioritizing, and remediating thousands of hardcoded secrets incidents

This article aims to provide application security teams with a guide to effectively prioritize, investigate and remediate hardcoded secrets incidents at scale.

Ziad Ghalleb

13 Apr 2025 – 12 min read

DevSecOps

Balancing Security and Velocity in Modern Software Development

Developers don’t want to become experts at security, and slowing down for anything is a tough proposition. Security isn’t a problem that will just go away, though.

C. J. May

20 Feb 2025 – 7 min read

DevSecOps

A collection of 76 posts

OIDC for Developers: Reasons Your Auth Integration Could Be Broken

Thomas Segura

From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps

Dwayne McDaniel

Mutual TLS (mTLS) Authentication - A Complete Guide

Tiexin Guo

A Complete Guide to Transport Layer Security (TLS) Authentication

Tiexin Guo

OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

Dwayne McDaniel

How to Handle Secrets in CI/CD Pipelines

Tiexin Guo

Make Deployments Great Again: How to Use Helm with Continuous Deployment (CD)

Tiexin Guo

Automatic Secrets Redaction at Runtime: Building a GitGuardian Lambda Extension

Andy Rea

How to Securely Access AWS from your EKS Cluster

Tiexin Guo

Multicloud Security Architecture

Tiexin Guo

Investigating, prioritizing, and remediating thousands of hardcoded secrets incidents

Ziad Ghalleb

Balancing Security and Velocity in Modern Software Development

C. J. May

OIDC for Developers: Reasons Your Auth Integration Could Be Broken

Thomas Segura

From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps

Dwayne McDaniel

Mutual TLS (mTLS) Authentication - A Complete Guide 

Tiexin Guo

A Complete Guide to Transport Layer Security (TLS) Authentication

Tiexin Guo

OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

Dwayne McDaniel

How to Handle Secrets in CI/CD Pipelines

Tiexin Guo

Make Deployments Great Again: How to Use Helm with Continuous Deployment (CD)

Tiexin Guo

Automatic Secrets Redaction at Runtime: Building a GitGuardian Lambda Extension

Andy Rea

How to Securely Access AWS from your EKS Cluster

Tiexin Guo

Multicloud Security Architecture

Tiexin Guo

Investigating, prioritizing, and remediating thousands of hardcoded secrets incidents

Ziad Ghalleb

Balancing Security and Velocity in Modern Software Development

C. J. May

Mutual TLS (mTLS) Authentication - A Complete Guide