1+ hour, 49+ min ago  (761+ words) Supply chain attacks cascade through ecosystems in ways traditional metrics hardly capture. GitGuardian evaluates the PCP Team incidents and finds damage spread to thousands of public targets. As a security researcher at GitGuardian, Gaetan is pioneering innovations in secret detection....

2+ day, 5+ hour ago  (927+ words) BSides SF 2026 explored how identity risk, production drift, and developer tooling are changing modern security strategy for defenders and platform teams. GitGuardian Developer Advocate - Dwayne has been working as a Developer Relations professional since 2016 and has been involved in the…...

1+ day, 21+ hour ago  (1438+ words) Learn how to detect compromise, assess your exposure to the LiteLLM supply chain attack, and use GitGuardian to orchestrate rapid incident response and secret remediation. Guillaume is a Cybersecurity Researcher at GitGuardian. He holds a PhD in networking. He likes…...

3+ day, 2+ hour ago  (536+ words) The Trivy story is moving quickly, and the latest reporting makes one thing clear: this is no longer just a GitHub Actions tag hijack. What started as a compromise of trivy-action, setup-trivy, and the v0.69.4 release has expanded into malicious Docker…...

4+ day, 1+ hour ago  (1503+ words) Plaintext secrets on developer machines create real supply chain risk. Honeytokens provide early detection while stronger identity-based controls are rolled out. GitGuardian Developer Advocate - Dwayne has been working as a Developer Relations professional since 2016 and has been involved in the…...

1+ week, 1+ hour ago  (843+ words) From golden images to agent governance, Chainguard Assemble 2026 focused on how teams can reduce risk by embedding trust, compliance, and security into delivery systems. GitGuardian Developer Advocate - Dwayne has been working as a Developer Relations professional since 2016 and has been…...

1+ week, 3+ day ago  (898+ words) GitGuardian's 5th State of Secrets Sprawl report is here. In this blog, we unpack the key findings behind the 2026 edition, from AI-driven leak growth to the remediation gaps security teams can't ignore. Anna collaborates closely with subject matter experts and thought…...

2+ week, 2+ day ago  (1165+ words) " GitGuardian raises $50M Series C to accelerate AI agent security and NHI governance " " READ THE ANNOUNCEMENT When an NHI is compromised, who do you call? GitGuardian NHI ownership eliminates the guessing game with automatic accountability. When that AWS service account gets…...

2+ week, 4+ day ago  (503+ words) Read the takeaways from ConFoo 2026, including putting guardrails where requests happen, auditing tool calls, treat dependency updates like production access. GitGuardian Developer Advocate - Dwayne has been working as a Developer Relations professional since 2016 and has been involved in the wider…...

3+ week, 1+ day ago  (954+ words) GitGuardian partnered with Google to answer: what happens when private keys leak? Using Certificate Transparency, we mapped about 1M leaked keys to 140k certificates. Result: 2,622 were valid as of September 2025, exposing major organizations. Our disclosure campaign achieved 97% remediation. Guillaume is a Cybersecurity…...