The security team said yes: How a $300B deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Tag: CI/CD

Image of two robots jousting.

Non-Human Identity Security vs. Service Account Management: What’s the Difference?

The concept of nonhuman identity is gaining traction fast, sparking new debate over how it differs from managing service accounts.
Apurva Davé
Apr 2026
|
5 min read
CI/CD

CI/CD Security Checklist: Eliminate Pipeline Secrets in 3 Weeks

CI/CD security checklist for DevSecOps teams. Eliminate pipeline secrets, secure dependencies and implement workload identity federation in 3 weeks.
Ashur Kanoon
Apr 2026
|
6 min read
Secrets management vs. secrets elimination

Secrets Management vs. Secrets Elimination: Where Should You Invest?

Most organizations still treat credentials as something that must be protected, stored, and rotated. But a second model is quietly reshaping how machine authentication works: eliminate static secrets altogether and authenticate workloads using identity and just-in-time access.
Dan Kaplan
Mar 2026
|
6 min read
Jenkins logo.

Aembit Adds Jenkins CI/CD Support

This update gives every Jenkins job a real identity and automated short-lived access so teams can retire static secrets without changing how their pipelines run.
Ashur Kanoon
Dec 2025
|
4 min read
Red Hat GitLab instance breach analysis with thumbnail of code on a laptop.

Red Hat’s GitLab Breach and the Cost of Embedded Credentials

The incident shows how repositories double as inadvertent credential stores, extending risk from vendors into customer environments.
Dan Kaplan
Oct 2025
|
3 min read
Announcing GitLab CLM.

Aembit Introduces GitLab Credential Lifecycle Management and GitLab Component

Say goodbye to long-lived personal access tokens as you replace them with ephemeral, policy-driven credentials and automated service account management.
Ashur Kanoon
Aug 2025
|
7 min read
Secretless Access for GitHub Actions and Workflows

Secretless Access for GitHub Actions and Workflows

Protect GitHub Actions environment variables with secretless authentication. Avoid static secrets and secure your CI/CD pipelines the modern way.
Dan Kaplan
Jun 2025
|
6 min read
Dev, DevOps, Security Cooperation

How to Unite Developers, DevOps, and Security Without Slowing Down

Builders and protectors don’t have to clash – they just need a common path.
Dan Kaplan
May 2025
|
5 min read
Image of back of developer working at three computers.

GitHub Action tjactions/changed-files Supply Chain Breach Exposes NHI Risks in CI/CD

Long-lived credentials and secrets fueled the attack.
Dan Kaplan
Mar 2025
|
4 min read
Image of major highway artery.

Why Scalability Matters in Non-Human Identity and Access Management

From dynamic workloads to API-driven systems, managing non-human identities requires a new approach to security at scale.
Kevin Sapp
Jan 2025
|
6 min read
Load More