Safeguard
Tag

secrets-management

Safeguard articles tagged "secrets-management" — guides, analysis, and best practices for software supply chain and application security.

90 articles

Vulnerability Analysis

Kubernetes CVE-2024-3177: Bypassing Mountable Secrets Policy

A medium-severity Kubernetes vulnerability allowed pods to access secrets they should not have been able to mount, undermining RBAC-based secret isolation in multi-tenant clusters.

Mar 10, 20245 min read
Security Operations

API Key Rotation Automation: A Practical Implementation Guide

Manual key rotation does not happen. Automated rotation does. Here is how to implement zero-downtime API key rotation for the services and credentials that matter most.

Nov 15, 20236 min read
DevSecOps

CI/CD Credential Theft Prevention

CI/CD pipelines are treasure troves of secrets -- cloud credentials, API keys, signing certificates. Preventing credential theft from build environments is critical to supply chain security.

Nov 8, 20236 min read
DevSecOps

CI/CD Secret Sprawl: How Pipeline Credentials Become Your Biggest Risk

Your CI/CD pipeline has more credentials than your production environment. Secret sprawl across pipelines creates a massive attack surface that most teams cannot even inventory.

Jul 20, 20235 min read
Supply Chain Attacks

LastPass Breach: How a Compromised Developer Environment Exposed Millions

LastPass disclosed that an attacker accessed their development environment for four days. The full impact wouldn't be known for months.

Aug 25, 20226 min read
Application Security

Secrets Management: Preventing Credential Leaks in Your Software Supply Chain

Hardcoded credentials remain the most common source of breaches. Despite a decade of tooling improvements, secrets keep leaking through source code, container images, CI logs, and dependency configurations. Here is how to actually fix it.

Jun 22, 20229 min read
secrets-management (Page 8) — Safeguard Blog