DevSecOps teams can now manage coding agents as a tenant rather than another vault where secrets might be stored, ensuring credentials are never exposed to an AI agent or LLM as plain text. The MCP server does not read or return secret values through the MCP channel, allowing Codex to create environments and invoke applications while the values themselves never leave the 1Password vault.
Why AI-Generated Code Is Raising the Stakes for Secrets Management
Following a $50 million funding round, GitGuardian CEO Eric Fourrier discusses why secrets security is becoming a much bigger problem in the age of AI-generated code and autonomous agents. As more organizations rush to deploy coding assistants and AI agents, Fourrier argues that the number of exposed credentials, API keys and tokens is rising just […]
Tool Fragmentation is Breaking Delivery Context — Here’s What Teams are Learning
Explore the emerging crisis in application delivery caused by tool fragmentation in modern software development. This article discusses the need for semantic interoperability, context preservation, and a shift from linear pipelines to graph-based architectures to enhance efficiency and reduce cognitive load for developers
Secrets Management Failures in CI/CD Pipelines
Explore the critical role of secrets management in CI/CD pipelines and its impact on cybersecurity. This article highlights the risks of credential exposure, the importance of implementing strong security practices, and how organizations can ensure robust defenses against breaches and supply chain attacks.
Common IaC Security Issues and How to Fix Them
Learn the top five Infrastructure as Code (IaC) security vulnerabilities, their fixes, and best practices to prevent misconfigurations, drifts, and breaches.
HashiCorp Embraces Agentic AI to Streamline Management of IT
HashiCorp today added a slew of updates to its platform for managing and securing IT infrastructure, including integration with multiple automation frameworks and a preview of an ability to use artificial intelligence (AI) agents to provision infrastructure as code (IaC). Announced at the HashiConf 2025, the unit of IBM will this week showcase Project infragraph, […]
Analysis of GitHub Repositories Surfaces Nearly 23M Secrets
An analysis of public GitHub repositories published today finds 22.8 million hardcoded secrets, representing a 25% increase since a similar study was done a year ago.
GitGuardian Allies With CyberArk to Better Protect App Secrets
GitGuardian has allied with CyberArk to streamline secrets detection and management by making it easier to share insights.
Legit Security Applies AI to Detect Vulnerable Application Secrets
Legit Security expanded the scope of its ASPM platform to make use of AI to discover vulnerable application secrets more accurately.
Sonar Adds Secrets Detection to Code Analysis Portfolio
Sonar has added a secrets detection capability to its portfolio of tools for analyzing code and DevOps workflows.
- 1
- 2
- 3
- 4
- Next Page »









