State of Secrets Sprawl on GitHub – 2021

  • By digitaldiary
  • in
  • on March 16, 2021

Our partners at GitGuardian have been scanning every single public commit made on GitHub for secrets since 2017, and they are now releasing their findings in the most comprehensive study on secrets sprawl ever conducted.

The community that has been built around GitHub, the Octoverse as it has become to be known, has been fundamental in changing how we use and build open-source components and software. Today there are more than 50 million developers using GitHub, 60 million repositories created in a single year and over 2 billion commits, the size of the Octoverse is outstanding.

GitHub today has become a place for developers to showcase their work and contribute to the millions of projects that form much of the building blocks modern software development is built upon. With such a vast resource of data publicly available, as you may imagine, there is also a huge number of sensitive data that is unknowingly or accidentally pushed to the platform, namely secrets like API keys, credentials and other digital authentication strings. These secrets can be used by attackers to gain access to infrastructure, systems and PII. When these secrets are distributed through multiple systems and services it creates a problem we collectively call secrets sprawl. Because code is so widely distributed through GitHub and because git keeps a complete record of a repository’s history, a public repository is arguably the worst place for a secret to end up.

How big of a problem is secrets sprawl on public GitHub? This has been very difficult to accurately quantify, until now!

Download the report here

Leave a Reply

PUBLISHED BY digitaldiary

View all posts by digitaldiary

Related Posts

#MillenniumLive , Data , Healthcare , Podcast

#MillenniumLive on Accelerating The Consumer Experience with Data with Informatica

#MillenniumLive welcomes the team at Informatica: Chuck Hayes, Customer Insights & Master Data Management Account Executive, Healthcare & Life Sciences and Richard Cramer, Chief Strategist, Healthcare & Life Sciences. Chuck and Richard share their thoughts on the trending topic: healthcare consumer experience, and how Informatica makes moving to “the cloud” an easy experience. Together, Informatica […]

#MillenniumLive , Healthcare , Podcast

#MillenniumLive on Igniting a Digital Health Revolution with Validic

#MillenniumLive welcomes Drew Schiller, CEO & Co-Founder at Validic, the healthcare industry’s premier technology platform for convenient, easy access to digital health data from best-in-class clinical and remote-monitoring devices, sensors, fitness equipment, wearables and patient wellness applications. Drew discusses Validic’s unique perspective on the role remote patient monitoring plays as part of an organization’s digital […]

#MillenniumLive , Healthcare , Podcast

#MillenniumLive on Modernizing the Patient and Clinician Experience with Vital

#MillenniumLive welcomes Aaron Patzer, Founder and CEO of Vital, a modern, intelligent digital health application that is transforming the care experience in hospitals and in emergency departments. Aaron shares how Vital has been optimizing user experience with consumer-grade software and artificial intelligence, and how they committed to healthcare excellence, building beautiful user experiences and intelligent […]

#MillenniumLive , Healthcare , Podcast

#MillenniumLive on the ROI of Implementing Self-Service Online Triage with Clearstep

This week on #MillenniumLive, we chat with Adeel Malik, Co-Founder & CEO of Clearstep. There are few health systems in the U.S. that are properly equipped to service patient consumers in a manner that is easiest, safest and most convenient for them. Therefore, enhancing patient experiences and automating care access with clinical AI chat solutions […]

Lovin’ Digital Diary?

Premium content to our readers interested in all things business.

Check Us Out!

Millennium Membership offers Fortune 1000 C-Level executives, leading public sector/government officials, and thought leaders across a variety of disciplines unique and exclusive opportunities to meet their peers, understand industry developments, and receive introductions to new technology and service advancements to help grow their career and overall company value.

About Millenium Alliance Next

About Digital Diary

Created to provide premium content to our readers interested in all things business.

Launched in 2017, Digital Diary was created to provide premium content to our readers interested in all things business. With our blogs catered to deliver the top news stories, trends, and interviews from across all industries.

Read all story Next

Millennium Alliance Membership

Learn More Next

What does it mean to be a Millennium Member? In the midst of the constant disruption across all industries, our members are given the tools they need to digitally transform their organizations and become the best leaders they can be. Millennium Members are provided the exclusive opportunity to attend our 40+ intimate in person and virtual Assemblies, take part in industry-leading Executive Education sessions conducted by the nation’s leading academic institutions, business leaders, and technology providers and receive industry leading content through our Digital Diary Platform as well as the rapidly growing #MillenniumLive Podcast Series.