Mastodawn

https://www.linkedin.com/posts/openbao_openbao-on-risc-v-deepcomputing-secrets-activity-7414926679871098880-t07q?utm_source=li_share&utm_content=feedcontent&utm_medium=g_mb_web&utm_campaign=copy #openbao #opensource #secretsmanagement

OpenBao on RISC-V DeepComputing | Secrets Management on Open Hardware at Open Source Summit Europe | OpenBao

Open Secrets Management on Open Hardware 🤝💻 Looking back, we still have such fond memories of the Open Source Summit Europe. Even though it's been a few months now, the energy and the breakthroughs from that week still stand out to our team! One of the major highlights was connecting with the RISC-V International community. We seized the opportunity to lean into the power of open collaboration, quickly building and deploying OpenBao on the RISC-V architecture. It was a perfect demonstration of secure, transparent secret management running on truly open hardware. A special thanks to Luca Berton and the rest of the team for the collaboration! Catch the full story here: https://lnkd.in/eTtuvECV #OpenBao #SecretsManagement #OpenSSF #OpenSource #Security

tntr Jan 7

#OpenBao
#RiscV
#OpenSource
#OSSummit
#SecretsManagement
https://youtu.be/TtqX43iAXPw?si=NTEvDa75fKHpm1qF

OpenBao on RISC-V DeepComputing | Secrets Management on Open Hardware at Open Source Summit Europe

YouTube

TechNadu Jan 3

Eighteen months of monitoring public Postman artefacts indicates reduced credential exposure, but persistent low-volume risk.

2025 findings were mostly single-secret incidents - yet validated and contextualized, making them operationally meaningful.

The issue appears rooted in ownership and lifecycle management of collaboration artefacts, not platform mechanics.

How are teams addressing secret hygiene outside traditional SDLC controls?
Follow TechNadu for practitioner-focused cybersecurity analysis.

#APISecurity #SecretsManagement #RiskSurface #DevSecOps #InfoSec

DevTo VN Bot Jan 1

Hashicorp Vault sử dụng policy để kiểm soát truy cập chi tiết. Policy định nghĩa hành động (create, read, update, delete, sudo) cho các đường dẫn (có thể chứa wildcard). Có hai policy tích hợp: root (toàn quyền) và default (gắn tự động). Viết bằng HCL, policy áp dụng cho token để kiểm soát quyền hạn tại mount paths. Ví dụ: quản lý auth methods, secrets engine, tạo orphan token.

#HashicorpVault #VaultPolicies #AccessControl #DevOps #SecretsManagement
#KiemSoatTruyCap #QuanLyBiMat #ChinhSachVa

Mark Gardner Dec 22

Keep secrets out of your images: mount them at /run/secrets and use a tiny wrapper to export them as env vars—secure, simple, and app-friendly. Read the full guide on my blog.

#Docker #DockerCompose #DevOps #InfoSec #CloudSecurity #SecretsManagement

https://phoenixtrap.com/2025/12/22/10-lines-to-better-docker-compose-secrets/?utm_source=mastodon&utm_medium=jetpack_social

Docker Compose Secrets: Export /run/secrets to Env Vars

Mount secrets at /run/secrets and use a tiny wrapper to export them as env vars—keep credentials out of images and repos.

The Phoenix Trap

Mark Gardner Dec 22

Keep secrets out of your images: mount them at /run/secrets and use a tiny wrapper to export them as env vars—secure, simple, and app-friendly. Read the full guide on my blog. #Docker #DockerCompose #DevOps #InfoSec #CloudSecurity #SecretsManagement

10 Lines to Better Docker Comp...

Carolina Code Conference Dec 19

ICYMI: Secrets Management: Comcast's Challenges and Solutions #shorts: Development teams need an easy solution for secrets management. Discover how to provide that solution before expecting compliance. If teams don't know where to store secrets, they won't follow policy. #secretsmanagement #development #security #compliance https://www.youtube.com/shorts/q-gDeS12CjU

DevTo VN Bot Dec 18

HashiCorp Vault – công cụ quản lý bí mật chủ chốt cho DevSecOps. Lưu trữ, mã hoá, tạo bí mật động, kiểm soát truy cập theo vai trò, quay vòng tự động và ghi log audit. Tích hợp dễ dàng vào CI/CD và các nền tảng cloud. Phiên bản Community mở nguồn, Enterprise có tính năng nâng cao. #HashiCorp #Vault #DevSecOps #Security #SecretsManagement #DevOps #Cloud #OpenSource #CôngNghệ #BảoMật

https://dev.to/haresh_511/hashicorp-vault-a-core-security-tool-in-devsecops-133m

HashiCorp Vault: A Core Security Tool in DevSecOps

HashiCorp Vault: A Core Security Tool in DevSecOps As organizations increasingly adopt...

DEV Community

Keeper Security Dec 10

We’ve introduced a secure, streamlined integration with ServiceNow’s Security Incident Response module.

With our ITSM application, enterprises can centrally manage and respond to Keeper-generated security alerts within existing ServiceNow SIR workflows – allowing security teams to maintain visibility and improve response times.

🔗 https://bit.ly/4530eO6

#KeeperSecurity #SecretsManagement #IT #SecurityIncidentResponse #TechIntegration

ServiceNow ITSM | KeeperPAM and Secrets Manager | Keeper Documentation

Secure ingestion of security and incidents alerts into ServiceNow SIR

Reddit Tech VN Bot Dec 9

KeyVault.sh - Quản lý bí mật an toàn với mã hóa end-to-end (AES-256-GCM), CLI, hỗ trợ nhóm & logs. 50 secrets miễn phí, PRO $3/tháng, TEAM $9/tháng. Tích hợp GitHub, Vercel và VS Code sắp ra mắt. Đăng ký dùng thử 14 ngày! #SecretsManagement #ZeroKnowledge #DevTools #QuảnLýMậtKhẩu #SaaS #AnToànMạng

https://www.reddit.com/r/SaaS/comments/1pi9tvy/i_got_tired_of_copying_env_files_between_machines/