all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exposing Secrets Via SDLC Tools: The SonarQube Case

Add to bookmarks
Jan. 19, 2023, 12:15 p.m. | Tor Beer

Security Boulevard securityboulevard.com




Secrets are any data that is sensitive to an organization or person and should not be exposed publicly. It can be a password, an access key, an API token, a credit card number, and more. You can read more about the dangers of secrets getting exposed via your source code management (SCM) systems here. But SCMs are not the only services from which secrets can get leaked. Essentially, any service you’re using as part of your software development lifecycle (SDLC) …

access api card case code code management credit credit card data exposed exposing key leaked management organization password scm scms sdlc secrets service services sonarqube source code systems token tools

Visit resource

More from securityboulevard.com / Security Boulevard

The 5 Best Practices for PCI DSS Compliance 3 hours ago | securityboulevard.com
best practices blog compliance dss +7
5 Ways to Step Up Your AD Hygiene with Silverfort 3 hours ago | securityboulevard.com
access active directory administrators applications +14
Back to Security Basics 3 hours ago | securityboulevard.com
back basics businesses computer +22
Miggo Unfurls Real-Time Application Detection and Response Platform 12 hours ago | securityboulevard.com
ai and machine learning in security and response api security application +21
Test & Evaluation Techniques for Meeting M-24-10 Mandates to Manage Generative AI Risk 14 hours ago | securityboulevard.com
ai risk ai risk management ai risks blog +24
From Caesar to Cyberspace: The Growing Menace of Obfuscated Phishing Scams 14 hours ago | securityboulevard.com
attackers caesar cto corner cyberattacks +17
HHS Strengthens Privacy of Reproductive Health Care Data 14 hours ago | securityboulevard.com
administration biden biden administration care +37
High-Risk Customers: How to Identify & Mitigate Risky Clients 15 hours ago | securityboulevard.com
amp business can clients +11
Bridging the Skills Gap in Data Centers with DCIM Software 15 hours ago | securityboulevard.com
center centers challenge critical +27

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Operations Analyst

@ Astranis | San Francisco
View on infosec-jobs.com

Manager - Business continuity Security and Safety.Risk and Compliance

@ MTN | Benin
View on infosec-jobs.com

Cyber Analyst, Digital Forensics Incident Response

@ At-Bay | Canada
View on infosec-jobs.com

Technical Product Manager, AppSec and DevSecOps

@ Penn Interactive | Philadelphia
View on infosec-jobs.com

Experienced Cloud Security Engineer (m/f/d) - Cybersecurity

@ MediaMarktSaturn | Barcelona, ES, 8003
View on infosec-jobs.com
View more jobs