GitGuardian Blog - Plushcap

Blog URL

blog.gitguardian.com

Posts YTD

6 ↑ vs 0 last year

Avg Posts/Month

0.0 since 2022

Monthly Post Volume

Start year:

Post Details

Search:

Title	Author	Published	Words	HN Pts
Managing AWS IAM with Terraform - Part 1	Guest Expert	2022-06-29	1,529	--
Joining the GitGuardian Talent Acquisition Team	Thomas Segura	2022-06-22	951	--
Q2 Product Roundup – Making secrets detection programs a reality for the …	Ziad Ghalleb	2022-06-21	910	--
Life is Too Short to Review Spaces	Guardians	2022-06-17	1,088	--
ggshield, the GitGuardian CLI [Security Zines]	Thomas Segura	2022-06-13	510	--
Developer experience is security, our answer.	Ziad Ghalleb	2022-06-10	1,390	--
AWS IAM Security Best Practices	Guest Expert	2022-06-08	4,396	--
Forrester Research: The State of Application Security 2022	Ziad Ghalleb	2022-06-03	473	--
Key Highlights From the New NIST SSDF	Guest Expert	2022-06-01	2,038	--
4 Reasons MSPs Should Monitor Their GitHub Footprint	Thomas Segura	2022-05-27	1,117	--
Security Chats - Jon-Erik Schneiderhan, Senior SRE at a tech company	Thomas Segura	2022-05-25	1,101	--
A Brief History of the DMCA	Guest Expert	2022-05-23	1,499	2
Securing your SDLC (Software Development Life Cycle)	Mackenzie Jackson	2022-05-18	3,343	--
Security Chats - What Developers Say About Us	Thomas Segura	2022-05-13	668	--
GitHub Actions Security Best Practices [cheat sheet included]	Thomas Segura	2022-05-05	3,435	1
GitGuardian’s New Nest	Carole Winqwist	2022-05-04	168	--
Automate security testing in your CI pipelines with GitGuardian and CircleCI	Ziad Ghalleb	2022-04-28	422	--
Detector of The Month – Stripe webhook secret, April 2022	Ziad Ghalleb	2022-04-27	520	--
How To Setup Your Jenkins Pipeline with GitGuardian in Kubernetes	Guest Expert	2022-04-22	1,467	--
How Hackers Used Stolen GitHub Tokens to Access Private Source Code	Mackenzie Jackson	2022-04-20	700	--
Carrying Ambition Through Passion	Thomas Segura	2022-04-19	1,095	--
Investigating, prioritizing, and remediating thousands of hardcoded secrets incidents	Ziad Ghalleb	2022-04-13	1,215	--
Compromising CI/CD Pipelines with Leaked Credentials [Security Zines]	Thomas Segura	2022-04-11	327	--
9 Extraordinary Terraform Best Practices That Will Change Your Infra World	Guest Expert	2022-04-06	3,117	--
Securing Containers with Seccomp: Part 2	Guest Expert	2022-04-01	2,052	3
Detector of The Month – Redis, March 2022	Ziad Ghalleb	2022-03-31	646	--
DevSecOps and the AppSec Shared Responsibility Model	Thomas Segura	2022-03-28	464	--
Latest from Lapsus$, Reviewing the Microsoft Breach	Mackenzie Jackson	2022-03-25	998	--
Secrets in Git Repos [Security Zines]	Ziad Ghalleb	2022-03-16	715	--
Securing Containers with Seccomp: Part 1	Guest Expert	2022-03-14	1,559	--
Samsung and Nvidia are the latest companies to involuntarily go open-source leaking …	Mackenzie Jackson	2022-03-09	735	--
The State of Secrets Sprawl 2022	Thomas Segura	2022-03-02	450	--
GitGuardian enters the FT120!	Carole Winqwist	2022-03-01	189	--
Detector of The Month – PlanetScale, February 2022	Ziad Ghalleb	2022-02-28	698	--
Security Chats - Don Magee, Security Engineer at a tech services company	Carole Winqwist	2022-02-25	451	--
Kubernetes Hardening Tutorial Part 3: Authn, Authz, Logging & Auditing	Guest Expert	2022-02-23	2,061	2
No stone left unturned: detecting custom patterns is now available in GitGuardian.	Ziad Ghalleb	2022-02-16	495	--
Security Chats - Abbas, Head of Infosec at a tech services company	Carole Winqwist	2022-02-09	321	--
Mackenzie Jackson, GitGuardian: “code security needs to be a layered approach”	Mackenzie Jackson	2022-02-09	1,219	--
Documentation as a Killer Feature	Thomas Segura	2022-02-07	728	--
Detector of The Month – Datadog, January 2022	Ziad Ghalleb	2022-01-31	850	--
GitGuardian is a proud sponsor of OWASP	Mackenzie Jackson	2022-01-31	755	--
GitGuardian is now SOC 2 Type I compliant	Carole Winqwist	2022-01-26	221	--
Data Breach: a 5 Steps Response Plan	Guest Expert	2022-01-21	1,689	2
Security Chats - Blake, DevSecOps Engineer at a large computer software company	Carole Winqwist	2022-01-19	309	--
Infrastructure as Code - Everything You Need to Know	Guest Expert	2022-01-14	1,976	--
AppSec 2022 Resolutions: find inspiration in this report from Gartner on mitigating …	Ziad Ghalleb	2022-01-13	318	--
Security Chats - Andy, Senior Security Engineer at an insurance company	Carole Winqwist	2022-01-11	373	--
CI Pipelines: 5 Risks to Assess	Guest Expert	2022-01-07	1,606	--
Kubernetes Hardening Tutorial Part 2: Network	Guest Expert	2022-01-05	1,932	2
Security Chats - Igor, Director of Development at a large computer software …	Carole Winqwist	2022-01-02	304	--
Implementing a Secrets Detection Program for the Enterprise – a case study	Ziad Ghalleb	2022-07-07	1,074	--
OWASP AppSec Days France 2025: Learning To Defend The Global Supply Chain …	Dwayne McDaniel	2025-09-26	1,463	--
Terraform Secrets Management Best Practices: Secret Managers and Ephemeral Resources	Tiexin Guo	2025-10-09	2,195	--
GitGuardian Introduces One-Click Secret Revocation to Accelerate Incident Response	Soujanya Ain	2025-09-23	1,202	--
How to Use NHI Governance as Your Central Dashboard to Monitor AWS …	Tiexin Guo	2025-09-29	1,295	--
SREday SF 2025: Human Centered SRE In An AI World	Dwayne McDaniel	2025-10-13	1,662	--
Red Hat GitLab Data Breach: The Crimson Collective's Attack	Guillaume Valadon, Carole Winqwist	2025-10-03	1,705	--
The GhostAction Campaign: 3,325 Secrets Stolen Through Compromised GitHub Workflows	Gaetan Ferry, Guillaume Valadon	2025-09-05	1,497	--
Who Governs Your NHIs? The Challenge of Defining Ownership in Modern Enterprise …	Dwayne McDaniel	2025-09-19	1,583	--
Shai-Hulud: A Persistent Secret Leaking Campaign	Gaetan Ferry	2025-09-16	852	--
When Google Says "Scan for Secrets": A Complete Guide to Finding Hidden …	Guillaume Valadon	2025-09-03	879	--
DevOps Days Philadelphia 2025: Security As A Control Loop, Resilience, Runtime Risks, …	Dwayne McDaniel	2025-10-06	1,507	--
GitHub Copilot Security and Privacy Concerns: Understanding the Risks and Best Practices	Dwayne McDaniel	2025-03-27	2,041	--
How Cybercriminal Organizations Weaponize Exposed Secrets	Guillaume Valadon, Gaetan Ferry	2025-10-10	693	--
Security Lessons For All From GitHub's Hardened Package Publication For npm	Dwayne McDaniel	2025-10-02	1,435	--
Detect Secrets in GitLab CI Logs using ggshield and Bring Your Own …	Philippe Gablain, Soujanya Ain	2025-09-17	1,602	--
INCYBER Forum Canada 2025: Collaboration Wins Over Compliance	Dwayne McDaniel	2025-10-21	1,540	--
The State of Secrets Sprawl 2025	Soujanya Ain	2025-03-11	734	--
Rethinking Security Resilience And Getting Back To Basics At CornCon 11	Dwayne McDaniel	2025-10-16	1,638	--
Building Chromegg: A Chrome Extension for Real-Time Secret Detection	Andy Rea	2025-10-20	1,319	--
OAuth for MCP - Emerging Enterprise Patterns for Agent Authorization	Thomas Segura	2025-10-17	2,901	--
From Path Traversal to Supply Chain Compromise: Breaking MCP Server Hosting	Gaetan Ferry	2025-10-22	2,208	--
Scanning GitHub Gists for Secrets with Bring Your Own Source	Anna Nabiullina, Romain Jouhannet	2025-10-27	1,167	--
LASCON XV: From AI Risk To Identity Security In AppSec	Dwayne McDaniel	2025-10-29	1,391	--
The Hidden Cost of Secrets Sprawl	Soujanya Ain	2025-10-30	1,713	--
Working Towards Improved PAM: Widening The Scope And Taking Control	Dwayne McDaniel	2025-10-31	1,271	--
Identity Architecture Now Drives Cyber Risk: Techno Security & Digital Forensics Conference …	Dwayne McDaniel	2025-11-04	1,464	--
BSides Chicago 2025: Operationalizing Identity Risk In Cloud-Native Environments	Dwayne McDaniel	2025-11-06	1,636	--
Q3 2025: NHI Security Gets More Real	Soujanya Ain	2025-11-11	1,533	--
Queen City Con 0x3: Hacking And Embracing Resiliency	Dwayne McDaniel	2025-11-12	1,675	--
API Key Security: 7 Enterprise-Proven Methods to Prevent Costly Data Breaches	Tiexin Guo	2025-11-14	2,297	--
Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon 2025	Dwayne McDaniel	2025-11-20	1,925	--
Workload And Agentic Identity at Scale: Insights From CyberArk's Workload Identity Day …	Dwayne McDaniel	2025-11-21	1,256	--
OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center …	Dwayne McDaniel	2025-11-24	1,287	--
Shai-Hulud 2.0: the supply chain attack that learned	Guillaume Valadon, Gaetan Ferry	2025-11-24	862	--
How Machine Learning Transforms Security Alert Chaos into Actionable Intelligence	Soujanya Ain, Alexandre Pradeilles	2025-11-28	947	--
A Complete Guide to Transport Layer Security (TLS) Authentication	Tiexin Guo	2025-11-25	3,875	--
Mutual TLS (mTLS) Authentication - A Complete Guide	Tiexin Guo	2025-12-02	3,682	--
Lessons in Testing, Performance, and Legacy Systems from /dev/mtl 2025	Dwayne McDaniel	2025-12-03	1,637	--
How Orange Business Transformed Secrets Security with a Prevention-First Approach	Soujanya Ain	2025-12-04	1,729	--
From Detection to Defense: How Push-to-Vault Supercharges Secrets Management for DevSecOps	Dwayne McDaniel	2025-12-05	1,647	--
OIDC for Developers: Reasons Your Auth Integration Could Be Broken	Thomas Segura	2025-12-11	2,135	--
How To Use ggshield To Avoid Hardcoded Secrets [cheat sheet included]	Dwayne McDaniel	2025-12-10	2,574	--
GitGuardian Launches Channel Partner Program to Scale Non-human Identity Security	Carole Winqwist	2025-12-16	575	--
Getting To AWS IAM Outbound Identity Federation With GitGuardian	Dwayne McDaniel	2025-12-17	2,052	--
Building a Multi-Agent Security Pipeline with Google's A2A Protocol and GitGuardian	Andy Rea	2025-12-18	1,369	--
Vault or Revoke: Guidance and Governance for Incident Response Teams	Dwayne McDaniel	2025-12-26	1,000	--
Stop Leaking API Keys: The Backend for Frontend (BFF) Pattern Explained	Thomas Segura	2026-01-08	2,798	--
What AI Agents Can Teach Us About NHI Governance	Dwayne McDaniel	2026-01-09	1,767	--
GitGuardian Closes 2025 with Strong Enterprise Momentum, Protecting Millions of Developers Worldwide	Carole Winqwist	2026-01-13	600	--
HMAC Secrets Explained: Authentication You Can Actually Implement	Thomas Segura	2026-01-15	1,440	--
A Comprehensive Guide to SOPS: Managing Your Secrets Like A Visionary, Not …	Tiexin Guo	2024-09-05	4,998	--
Boards Focus On Risk, Resilience, and Operational Realities: Where NHI Governance Fits …	Dwayne McDaniel	2026-01-22	2,197	--
Responding to Exposed Secrets - An SRE's Incident Response Playbook	Tiexin Guo	2026-01-27	2,491	--
TOP 15 Secret Scanning Tools 2026: Protect Code (but not only!) and …	Anna Nabiullina	2025-12-21	4,736	--

Plushcap, by Matt Makai. 2021-2026.