all InfoSec news
Fixing a vulnerability? Make sure your GitHub isn't showing too much
April 4, 2022, 9:32 a.m. | Ax Sharma
Sonatype Blog blog.sonatype.com
obfuscated secrets and a $326M crypto hack: are your GitHub commits revealing too much?
When committing software projects to GitHub it remains crucial to ensure that secrets like your private tokens, API keys, and passwords are not accidentally committed to open source repositories as well.
devzone featured github isn npm open source hygiene vulnerabilities vulnerability
More from blog.sonatype.com / Sonatype Blog
DevOps pioneers navigate organizational transformation
6 days, 22 hours ago |
blog.sonatype.com
The essential duo of SCA and SBOM management
1 week, 6 days ago |
blog.sonatype.com
Automating and maintaining SBOMs
2 weeks, 6 days ago |
blog.sonatype.com
Cyber readiness and SBOMs
4 weeks, 2 days ago |
blog.sonatype.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cloud Technical Solutions Engineer, Security
@ Google | Mexico City, CDMX, Mexico
Assoc Eng Equipment Engineering
@ GlobalFoundries | SGP - Woodlands
Staff Security Engineer, Cloud Infrastructure
@ Flexport | Bellevue, WA; San Francisco, CA
Software Engineer III, Google Cloud Security and Privacy
@ Google | Sunnyvale, CA, USA
Software Engineering Manager II, Infrastructure, Google Cloud Security and Privacy
@ Google | San Francisco, CA, USA; Sunnyvale, CA, USA