How GitGuardian and Delinea Solve Improper Offboarding of NHIs at Scale

Learn how GitGuardian and Delinea solve the growing problem of improper offboarding for Non-Human Identities (NHIs). Discover why orphaned secrets are a top security risk and how to automate their lifecycle management.

Soujanya Ain

19 Aug 2025 – 5 min read

Secrets detection

Bring Your Own Source: Plug GitGuardian into Any Workflow in Minutes

Discover how GitGuardian's "Bring Your Own Source" initiative enables security teams to extend secrets detection beyond code repositories, leveraging custom integrations to eliminate a significant hidden attack surface.

Soujanya Ain

13 Aug 2025 – 8 min read

Secrets detection

SharePoint Zero-Day Exploits Highlight Hidden Secrets Risk in Document Collaboration Tools

The recent SharePoint zero-day exploits expose a critical blind spot: hardcoded secrets hidden in collaboration tools. While teams secure code repositories, API keys and credentials lurking in SharePoint documents create dangerous attack vectors for lateral movement.

Anna Nabiullina

23 Jul 2025 – 2 min read

Secrets detection

Why Most Exposed Secrets Never Get Fixed

Our latest State of Secrets Sprawl 2025 research reveals a troubling reality: the majority of leaked corporate secrets found in public code repositories continue to provide access to systems for years after their discovery.

Anna Nabiullina

5 Jun 2025 – 5 min read

Secrets detection

Why Your Biggest Secret Leaks Happen Behind the Firewall: Private vs. Public Repos

Private repos leak plaintext secrets 8x more often than public ones. Learn why internal codebases are the biggest blind spot in your secrets management strategy.

Dwayne McDaniel

13 May 2025 – 6 min read

Breach explained

xAI Secret Leak: The Story of a Disclosure

AI adoption accelerates secret sprawl as organizations connect to multiple providers. Our investigation of a leaked xAI API key, which granted access to unreleased Grok models, reveals critical flaws in their disclosure process, highlighting necessary improvements in this domain.

Gaetan Ferry

7 May 2025 – 6 min read

Artificial Intelligence

A Look Into the Secrets of MCP: The New Secret Leak Source

MCP rapidly enhances AI capabilities but introduces security challenges through its distributed architecture. Especially, the distributed nature of MCP requires a lot of NHIs and their secrets. Our research shows that MCP is a new source of leaks that already discloses real-world secrets.

Gaetan Ferry

29 Apr 2025 – 7 min read

Secrets detection

The Hidden Breach: Secrets Leaked Outside the Codebase Pose a Serious Threat

Secrets aren't just in code. GitGuardian’s 2025 report shows major leaks in collaboration tools like Slack, Jira, and Confluence. Here’s what security teams need to know.

Dwayne McDaniel

31 Mar 2025 – 8 min read

Secrets detection

GitGuardian's Secret Risk Assessment: Know Your True Exposure For Free

Go beyond GitHub's scope. Understand the full picture of your secret leaks with GitGuardian, covering public and internal exposures.

Soujanya Ain

25 Mar 2025 – 6 min read

Secrets detection

Addressing The Growing Challenge of Generic Secrets: Beyond GitHub's Push Protection

Generic secrets are hard to detect and are getting leaked more often. See how GitGuardian offers advanced protection where GitHub's push protection falls short.

Dwayne McDaniel

17 Mar 2025 – 7 min read

Secrets detection

The State of Secrets Sprawl 2025

GitGuardian's 2025 report reveals 70% of leaked secrets remain active two years later. Discover the alarming state of secrets sprawl & protect your organization.

Soujanya Ain

11 Mar 2025 – 3 min read

Secrets detection

Comparing Secrets Detection Solutions? Here’s Why You Should Use the F1 Score

Learn how the F1 score helps you choose the right tool to strengthen your security posture.

Ferdinand Boas

31 Jan 2025 – 9 min read