Please turn JavaScript on

GitGuardian Blog - Take Control of Your Secrets Security

Following GitGuardian Blog - Take Control of Your Secrets Security's news feed is very easy. Subscribe using the "follow" button on the top right and if you want to, choose the updates by topic or tag.

We will deliver them to your inbox, your phone, or you can use follow.it like your own online RSS reader. You can unsubscribe whenever you want with one click.

Keep up to date with GitGuardian Blog - Take Control of Your Secrets Security!

GitGuardian Blog - Take Control of Your Secrets Security: GitGuardian Blog - NHI Governance & Secrets Security

Is this your feed? Claim it!

Publisher:  Unclaimed!
Message frequency:  0.4 / day

Message History

GitGuardian is now live on the Kiro Powers marketplace.

Install the Power once, and Kiro’s agent can help you use GitGuardian tools directly in your workflow. Ask it to scan your repo for secrets with the GitGuardian CLI, or remediate incidents tied to your current project through the GitGuardian MCP server.

GitGuardian’s CLI, MCP server, and built-in steering fil...


Read full story
👉TL;DR: A developer's laptop quietly becomes one of the densest credential stores in the organization. Cloud keys sit in ~/.aws, tokens pile up in shell history and .npmrc, SSH keys live in ~/.ssh, session cookies persist in the browser, and AI coding agents cache secrets in their own config files. None of it in a Git repos...

Read full story

Beneath the National Mall in Washington, D.C,, 23 federal buildings are connected by tunnels most people never see. Five walkable corridors carry steam, chilled water, and fiber optic lines through passages that regularly hit 100 degrees Fahr...


Read full story

By: Pierre Le Clezio, Lead Product Manager – GitGuardian
Nic Gumina, Senior Security Consultant – AWS
Manu Chandrasekhar, Senior DevOps Consultant – AWS
Dan Parlin, Security Consultant – AWS

This article was originally published at


Read full story

Git, from a certain perspective, is a time machine that works across parallel branches of reality. It lets teams jump to any point in the past and preserves every change ever made to a codebase. That power is also what makes secrets leaks in code so persistent and dangerous. Every commit is a permanent record. When a secret enters a commit, it lives in that record forever, re...


Read full story