DEV Community

Thomas Segura profile picture

Thomas Segura

404 bio not found

Joined Joined on  github website

Work

Thomas Segura

Five Year Club
Writing Debut
Four Year Club
4 Week Writing Streak
Three Year Club
Two Year Club
One Year Club
Pipeline Integrity and Security in DevSecOps

Pipeline Integrity and Security in DevSecOps

Comments
11 min read

Want to connect with Thomas Segura?

Create an account to connect with Thomas Segura. You can also sign in below to proceed if you already have an account.

Already have an account? Sign in
Secure-by-Design Software in DevSecOps

Secure-by-Design Software in DevSecOps

1
Comments
13 min read
Vulnerability Management Lifecycle in DevSecOps

Vulnerability Management Lifecycle in DevSecOps

3
Comments
11 min read
The Open-Source Backdoor That Almost Compromised SSH

The Open-Source Backdoor That Almost Compromised SSH

2
Comments
3 min read
The State of Secrets Sprawl 2024

The State of Secrets Sprawl 2024

1
Comments
2 min read
Understanding the Risks of Long-Lived Kubernetes Service Account Tokens

Understanding the Risks of Long-Lived Kubernetes Service Account Tokens

7
Comments
7 min read
How to Secure Your Secrets Manager with GitGuardian Honeytoken

How to Secure Your Secrets Manager with GitGuardian Honeytoken

Comments
5 min read
HasMySecretLeaked - Building a Trustless and Secure Protocol

HasMySecretLeaked - Building a Trustless and Secure Protocol

13
Comments
8 min read
Yes, GitHub's Copilot can Leak (Real) Secrets

Yes, GitHub's Copilot can Leak (Real) Secrets

Comments
6 min read
From Code to Cloud: Security for Developers [cheat sheet included]

From Code to Cloud: Security for Developers [cheat sheet included]

Comments
7 min read
Microsoft AI involuntarily exposed a secret giving access to 38TB of confidential data for 3 years

Microsoft AI involuntarily exposed a secret giving access to 38TB of confidential data for 3 years

Comments
6 min read
Securing your CI/CD: an OIDC Tutorial

Securing your CI/CD: an OIDC Tutorial

Comments
8 min read
How to Secure Your Container Registries With GitGuardian's Honeytoken

How to Secure Your Container Registries With GitGuardian's Honeytoken

Comments
8 min read
The Art of Protecting Secrets: Eight Essential Concepts for SecOps Practitioners

The Art of Protecting Secrets: Eight Essential Concepts for SecOps Practitioners

Comments
5 min read
Techno Security & Digital Forensics Conference East 2023

Techno Security & Digital Forensics Conference East 2023

4
Comments
10 min read
How Your Secrets Management Maturity Can Impact Your DevOps Research and Assessment Metrics

How Your Secrets Management Maturity Can Impact Your DevOps Research and Assessment Metrics

Comments
5 min read
GitHub's Push Protection: Enhancing Open-Source Security with Limitations to Consider

GitHub's Push Protection: Enhancing Open-Source Security with Limitations to Consider

1
Comments
7 min read
Are Your Company Secrets Safe on GitHub? Here's Why You Need to Request a Complimentary Audit

Are Your Company Secrets Safe on GitHub? Here's Why You Need to Request a Complimentary Audit

Comments
5 min read
Supply Chain Security Secrets and Modern Security Frameworks (Part III)

Supply Chain Security Secrets and Modern Security Frameworks (Part III)

1
Comments
8 min read
The State of Secrets Sprawl 2023

The State of Secrets Sprawl 2023

Comments
3 min read
How Lemontech Protects its Secrets with GitGuardian

How Lemontech Protects its Secrets with GitGuardian

Comments
3 min read
Supply Chain Security: What is SLSA? (Part I)

Supply Chain Security: What is SLSA? (Part I)

Comments 1
10 min read
Top 10 Practices for Secure Software Development

Top 10 Practices for Secure Software Development

1
Comments
9 min read
Open Policy Agent with Kubernetes - Tutorial (Pt. 1)

Open Policy Agent with Kubernetes - Tutorial (Pt. 1)

Comments
7 min read
What is Policy-as-Code? An Introduction to Open Policy Agent

What is Policy-as-Code? An Introduction to Open Policy Agent

Comments
5 min read
Thinking Like a Hacker: Finding Source Code Leaks on GitHub

Thinking Like a Hacker: Finding Source Code Leaks on GitHub

4
Comments 2
5 min read
Infrastructure as Code Security [Security Zines]

Infrastructure as Code Security [Security Zines]

1
Comments
2 min read
When it Comes to Secrets, How Mature is Your Organization?

When it Comes to Secrets, How Mature is Your Organization?

1
Comments
2 min read
Thinking Like a Hacker: Stealing Secrets with a Malicious GitHub Action

Thinking Like a Hacker: Stealing Secrets with a Malicious GitHub Action

9
Comments 1
4 min read
Thinking Like a Hacker: Commanding a Bot Army of Compromised Twitter Accounts

Thinking Like a Hacker: Commanding a Bot Army of Compromised Twitter Accounts

2
Comments
4 min read
Wake-up call: why it's urgent to deal with your hardcoded credentials

Wake-up call: why it's urgent to deal with your hardcoded credentials

Comments
8 min read
Thinking Like a Hacker: AWS Keys in Private Repos

Thinking Like a Hacker: AWS Keys in Private Repos

5
Comments
5 min read
Thinking Like a Hacker: Abusing Stolen Private Keys

Thinking Like a Hacker: Abusing Stolen Private Keys

7
Comments
4 min read
How to make security policies a team effort

How to make security policies a team effort

7
Comments
5 min read
GitHub Actions Security Cheat Sheet

GitHub Actions Security Cheat Sheet

21
Comments
15 min read
What’s new in the 2021 OWASP Top10?

What’s new in the 2021 OWASP Top10?

3
Comments
5 min read
8 Easy Steps to Set Up Multiple Git Accounts [cheat sheet included]

8 Easy Steps to Set Up Multiple Git Accounts [cheat sheet included]

7
Comments
7 min read
loading...