Security News > 2023 > June > Over Half of Security Leaders Lack Confidence in Protecting App Secrets, Study Reveals

The multiplication of the number of secrets being simultaneously in use within the development cycle makes it all too easy to fall off the control of sound security measures and "Leak."

Critically, if a developer hardcodes secrets into their code or configuration files and the code is pushed to a GitHub repository, those secrets are also pushed.

The study revealed that 94% of respondents plan to enhance their secrets practices in the next 12-18 months, which is a positive step towards better secrets management and corporate safety.

The Voice of Practitioners study highlights the importance of a holistic secrets strategy in AppSec and provides valuable insights into the best practices for reducing the risks associated with secrets sprawl.

If you're looking to improve your secrets management program, a simple step you can take right now is to request a free audit of your company's secrets leaks on GitHub from GitGuardian.

The automatic report you'll receive will show you the number of active developers on GitHub, the number of secrets found exposed on GitHub's repositories over time, and the percentage of valid secrets among them.

News URL

https://thehackernews.com/2023/06/over-half-of-security-leaders-lack.html