Announcing “Crafting Secure Software,” GitGuardian’s Guide to Security by Design!

Exciting news! Our first book, "Crafting Secure Software," is now available. Learn how to embed security throughout the SDLC, mitigate risks, and foster a security culture. Get your copy today and level up your software security game! ... Read More
Honeytokens [Security Zines]

Honeytokens [Security Zines]

|
Buckle up, buttercup, because we're about to dive into the sticky-sweet world of honeytokens! ... Read More
How to augment DevSecOps with AI?

CodeSecDays 2024: A Deep Dive in Software Supply Chain Security

Explore key insights from CodeSecDays 2024 on software supply chain security. Learn about AI in DevSecOps, SLSA frameworks, developer-security collaboration, and secrets management. Discover strategies for a more secure digital future ... Read More
Balancing AI Performance and Safety: Lessons from PyData Berlin

Balancing AI Performance and Safety: Lessons from PyData Berlin

Would you trust AI to call 911? GitGuardian's ML engineer Nicolas posed this question at PyData Berlin, sparking a discussion on integrating ML into critical systems, debunking AI myths, and balancing innovation with safety in AI deployment ... Read More
CodeSecDays: Insights and Highlights from GitGuardian's Security Event

CodeSecDays: Insights and Highlights from GitGuardian’s Security Event

CodeSecDays provided an invaluable platform for the French AppSec community to come together, share insights, address challenges, and explore best practices for securing digital infrastructures. Here are the key highlights ... Read More
Why SAST + DAST can't be enough

Why SAST + DAST can’t be enough

| | DevSecOps
Static and dynamic app testing are cornerstones for any comprehensive AppSec program, yet they rarely rise up to the challenges of fully securing modern software. Discover why secrets are one of their critical blind spots ... Read More
Software Composition Analysis [Security Zines]

Software Composition Analysis [Security Zines]

| | SCA, Security Zines
For those feeling code-conscious about shady dependencies lurking in their apps, Software Composition Analysis is the software security wellness check you need! ... Read More
Early Lessons from the Sisense Breach

Early Lessons from the Sisense Breach

| | Breach explained
Business intelligence company Sisense has seen secrets compromised in its GitLab repositories, leading to a siphoning of its customers' sensitive data ... Read More