šŸ”’šŸ¤– The Next Step in GitGuardianā€™s Approach to NHI Security

DISCOVER

šŸ”’šŸ¤– The Next Step in GitGuardianā€™s Approach to NHI Security

DISCOVER

Keep Your Private Code Packages Private With GitGuardian Honeytoken

GitGuardian Honeytoken is a tool that helps detect leaks and intrusions in projects. It allows users to create a Honeytoken from the dashboard, insert it into their project, and share the package with their team securely. Learn more at https://www.gitguardian.com/honeytoken.

Video Transcript

Are your private npm or PyPiĀ  packages staying private? How would you know if someone shared anĀ  internal package out there in the wild? GitGuardian Honeytoken is a quick and easy way to add leakage and intrusionĀ  detection to your projects. Honeytokens are decoy credentials that don'tĀ  grant users access to anything but instead trigger alarms that give you the IP of the user,Ā  their user agent, and what action they attempted. If someone does try to use them,Ā  then you need to know ASAP. Honeytokens are also triggered when exposedĀ  publicly and will sound the alarm if the credential is scanned, giving you a heads-upĀ  that your private package is no longer private. Knowing early is the secret toĀ  effective incident response. When building your packages, just create aĀ  new honeytoken from the GitGuardian dashboard and insert it into the project where youĀ  prefer, in a .yml, .json, .py, or .js file. Then build and share that packageĀ  with the team with confidence. GitGuardian Honeytokens are hereĀ  to help keep your projects safe.