Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: Secrets

Legit Security syslogs HashiCorp Checkmarx Synopsys Cycode CodeLogic scanning Contrast Security secrets scan dynamic

The Scanner We Really Need

| | automating security, scanning, Secrets, secrets management
IT has scanners for everything. And by everything, I mean everything. We scan source code for vulnerabilities and data leaks. We scan apps for vulnerabilities. We scan the network for holes. We ...
productivity, developer, development, software, system, Agile, and, IDP, practices, DevOps, open-source, CVE, Software, in-house development IDP developer, experience, software DevOps jobs secrets Libbpf BCC BPF kernel developer citizen secure software

Managing Hardcoded Secrets to Shrink Your Attack Surface 

| | devsecops, Secrets, secrets management, secure coding
The practice of hardcoding secrets—such as authentication credentials, passwords, API tokens and SSH Keys—as non-encrypted plain text into source code or scripts has been common in software development for many years. It ...
GitHub false positive GitLab

It is Time to Secure Git

| | GIT, Git Security, gitops, GitOps framework, Secrets
At this point, we’ve got a ton of experience with the bits of Git that we use. And locking down Git is well-documented. Okay, it is documented; we can say that, at ...
secrets, legit security, leaking, software, GitGuardian secrets code Secrets BluBracket SaaS

DevOps Teams Struggling to Keep Secrets

| | CI/CD, devsecops, Secrets, secrets management, secure coding
A growing number of organizations are suffering security incidents related to exposed secrets in DevOps CI/CD pipelines, according to a recent ThycoticCentrify report. The study paints a troubling picture: Only 5% of ...
secrets cloud security

Don’t Look at This! IT’S A SECRET!

| | API Keys, automation, AWS, Git Guardian, github, Secrets
To continue the discussion about secrets after perusing this excellent report by GitGuardian—last time I went a little nuts about the number of secrets exposed in IT folks' personal repositories. And it ...