HackerTrans
TopNewTrendsCommentsPastAskShowJobs

cwinq

no profile record

Submissions

GitGuardian analysis of the bitwarden/CLI compromise

blog.gitguardian.com
4 points·by cwinq·3 เดือนที่ผ่านมา·0 comments

Renovate and Dependabot: The New Malware Delivery System

blog.gitguardian.com
5 points·by cwinq·3 เดือนที่ผ่านมา·0 comments

Why ChatGPT is a security concern for your organization-even if you don't use it

blog.gitguardian.com
6 points·by cwinq·3 ปีที่แล้ว·2 comments

comments

cwinq
·7 เดือนที่ผ่านมา·discuss
You can try GitGuardian, it is very powerful and free for individual developers and small teams. It has precommit hooks, detection in IDE and all.
cwinq
·ปีที่แล้ว·discuss
How big is your team? GitGuardian is free for team below 25 dev. And it will make sure secrets don't make it to your code and highlight any historical leaks too.
cwinq
·3 ปีที่แล้ว·discuss
ChatGPT may not be used by all organizations and may even be banned. But that doesn't mean you don't have exposure to the security risks it contains. This post looks at why ChatGPT should be part of your threat landscape.
cwinq
·4 ปีที่แล้ว·discuss
some details on this breach: https://blog.gitguardian.com/dropbox-breach-hack-github-circ...
cwinq
·4 ปีที่แล้ว·discuss
Well, GitGuardian is free for individual developers (20 K of them use it - n°1 app on GitHub market place) and for team below 25. So I guess the masses can enjoy secrets free code! https://github.com/marketplace/gitguardian
cwinq
·4 ปีที่แล้ว·discuss
you can try ggshield - https://github.com/GitGuardian/ggshield -
cwinq
·4 ปีที่แล้ว·discuss
You can definitely use pre commit hooks for this like the one of ggshield https://github.com/GitGuardian/ggshield - remediation is far quicker when the secret does't make it to the codebase!
cwinq
·4 ปีที่แล้ว·discuss
you may also want to look at ggshield: https://github.com/GitGuardian/ggshield