As the ubiquitous rise of agentic AI services continues to surge, spread and scale, the need to provide teams with ancillary extensions and connections to Model Context Protocol (MCP) appears to now be equally obligatory. An equal consideration for both developer and operations counterparts inside modern DevOps team environments, the need to build, test, lock-down and subsequently manage, monitor and optimize application connections to agentic AI services is of paramount importance.

Developed by Anthropic, MCP provides AI services with a way to access and interpret the appropriate context for any given system interaction. It does this by connecting AI models and execution engines with the correct system components, tools and data sources they need to perform their functions securely and efficiently.

When developers first build services drawing upon data repositories and services that agentic tools will use, operations teams will then be faced with a continuous delivery responsibility to ensure system connections are sound, secure and solid. Existing as a kind of combined DevOps traffic light and GPS route map system for agentic injection, latest to pledge allegiance to the MCP mantra is GitGuardian, a non-human identity (NHI) security, automated secrets detection and remediation company.

More MCP, If You Please

The organization has now detailed its Model Context Protocol (MCP) Server as a new infrastructure service designed to bring AI-assisted secrets security directly into developer environments. As intelligent agents begin to reshape the software development landscape, GitGuardian says its end-to-end NHI and secrets security platform empowers human beings working in software-driven organizations to enhance their non-human security and comply with industry standards. 

Potentially classed as a sub-discipline of network management for DevOps security practitioners, secrets management involves the protection of “secrets,” including passwords, encryption keys, API keys, database credentials, user credentials, secure socket shell (SSH) keys and short-lived credentials used for authentication and authorization, such as tokens. 

In short, a secret is any piece of data that forms part of an application security fabric to allow applications and services (or higher-level operating systems or lower-level APIs) to authenticate and authorize users or machines with access to resources. 

Injected Honeytokens, Sweet!

GitGuardian says its MCP server enables DevOps teams to detect, respond to and remediate security incidents as code is being written. It allows developers to scan code, manage incidents and “inject honeytokens” directly from AI-enhanced IDEs like Cursor and Windsurf. This approach compresses the traditional security feedback loop, from commit to alert to fix, into minutes.

For completeness here, let’s remember that honeytokens are smaller second cousins to honeypots. A honeypot is a fully blown decoy system (the size of an application server, upward to a server or even a network) fabricated to attract malicious actors in order to observe their behavior and interactions. Logically, then, a honeytoken is a smaller unit of data that is placed inside a dataset, application or other service to also entice attackers and understand their attack vectors and patterns.

“This is a new security primitive,” said Eric Fourrier, co-founder and CEO of GitGuardian. “By launching our MCP server, we’re enabling agents to take proactive, context-aware security actions directly in the development environment. Developers no longer need to wait for delayed alerts or decipher vague ticket instructions. Security now happens as they code. The GitGuardian MCP Server acts as a command center that allows AI agents to read from and orchestrate tasks across the organization’s broader security ecosystem.”

Intelligent Agents Command Hub

Fourrier and team say that teams using this technology will see that agents can now automatically scan files pre-release, identify and remediate hardcoded secrets and inject honeytokens into code for early breach detection. Built with read-only permissions by design, GitGuardian’s MCP Server minimizes security risk while maximizing utility. It ensures agent behavior is safe, supervised and auditable.

“We’re not just pushing data to IDEs,” said Mathieu Bellon, senior product manager at GitGuardian. “We’re giving intelligent agents the tools and context they need to take action responsibly and securely, directly within the developer’s workflow. The MCP Server is compatible with any IDE or platform that supports the Model Context Protocol (MCP). With these capabilities, security becomes a collaborative, real-time experience for developers so that there is no more context switching to external tools, no more reactive security loops and no more ambiguity around incident ownership.”

Perfect Posture?

Developers and wider DevOps teams are promised the ability to gain agency over their security posture with tools tailored to their environment and pace. Both Fourrier and Bellon insist that secrets sprawl remains one of the most pervasive and underestimated security threats today. Hardcoded API keys, credentials and tokens can lead to costly breaches if not identified and remediated quickly.

“The rapid rise of intelligent development tools like Copilot, Cursor, Windsurf and Claude has further fueled the explosion of non-human identities and hardcoded credentials scattered across codebases, wikis, CI pipelines and collaboration platforms. Traditional security tools are not keeping up,” say the pair. “By embedding secrets detection and response within the development pipeline, GitGuardian’s MCP Server offers a transformative approach to reducing security risk without slowing development velocity.”

Humanizing Non-Human Controls

In an age when DevOps practitioners need to know their NHI from their MCP APIs, it could well be time to humanize the practice of non-human identity security management.