An analysis published by ReversingLabs, a provider of tools for securing application development environments, suggests that commercial software used in software supply chains is just as vulnerable as open-source code ...

Pulumi today extended the reach of its Environments, Secrets and Configurations (ESC) platform for managing infrastructure-as-code (IaC) into the realm of DevSecOps by adding the ability to manage secrets and implement policies ...

An analysis of public GitHub repositories published today finds 22.8 million hardcoded secrets, representing a 25% increase since a similar study was done a year ago ...

New research reveals that 100% of organizations face critical app security risks. Learn key findings and essential steps to protect your software development pipeline ...

Legit Security today extended its ability to scan for secrets in software to include any that might reside in the personal GitHub repositories of application developers ...

Checkmarx this week extended the scope of its ability to protect software supply chains with tools that access how secure a repository is and find where application secrets have been shared in ...

A global survey of 1,000 IT leaders from organizations with more than 500 employees published today finds that 79% have experienced or are aware of secrets leaking within their organization ...

A report published by Aqua Security finds that as many as 18% of secrets inadvertently exposed are not being discovered ...

GitGuardian has allied with CyberArk to streamline secrets detection and management by making it easier to share insights ...

Sonar has added a secrets detection capability to its portfolio of tools for analyzing code and DevOps workflows ...

GitGuardian added a tool that makes it possible for DevOps teams to search GitHub repos to determine if secrets have inadvertently found their way into other apps ...

Pulumi previewed a tool that enables DevOps teams to unify environments, secrets and configuration (ESC) management ...