Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

certkit

DNS-PERSIST-01 validates a domain once to get certificates forever

Jan 5, 2026 By Todd H. Gardner In CertKit
With the ACME protocol, to issue a certificate you have to prove you control the domain. The CA gives you a challenge, you complete it, and they issue your cert. The trouble is that every validation method has tradeoffs. And as certificate lifetimes get shorter, those tradeoffs will get more painful. DNS-PERSIST-01 is a new approach coming in 2026 that trades proof-of-freshness for easier operations.
Read Post

Honeytokens with ggshield: plant tripwires that alert on secret use

Jan 5, 2026 By GitGuardian In GitGuardian
In this video, we introduce ggshield honeytoken and why it’s one of the most powerful tools in the GitGuardian toolbox. A honeytoken is a decoy secret that alerts you the moment someone tries to use it or validate it. Think of it like a digital tripwire. In GitGuardian, honeytokens can be created through the dashboard or API, and they look like real AWS keys because they are valid credentials. The difference is they grant zero access and are isolated to an AWS account GitGuardian maintains specifically for this purpose.
View Video
armo

Best threat detection & response solutions for cloud-native applications in 2026

Jan 4, 2026 By Jonathan Kaftzan In ARMO
What is the best Threat Detection & Response for cloud-native applications? Traditional EDR isn’t enough for Kubernetes enviorments. Security teams need CADR (Cloud Application Detection and Response), which unifies application, container, Kubernetes, and cloud detection into a single platform that builds complete attack stories instead of siloed alerts. Why doesn’t traditional EDR work for Cloud-Native Applications?
Read Post
Best Odoo Hosting Providers in 2026

Best Odoo Hosting Providers in 2026

Jan 3, 2026 By SecuritySenses In SecuritySenses
Choosing the right hosting for your Odoo ERP system directly impacts your daily operations. Slow loading times frustrate users, unexpected downtime disrupts business, and poor hosting choices lead to escalating costs as you grow. This guide examines three distinct Odoo hosting approaches to help you find the right fit for your business needs and technical capabilities.
Read Post

Has My Secret Leaked (HMSL) with ggshield: check public GitHub exposure safely

Jan 2, 2026 By GitGuardian In GitGuardian
Since 2018, GitGuardian has been scanning for secrets added to GitHub public repositories. When a secret is found, GitGuardian hashes it and stores only a fingerprint of the secret. That fingerprint is what you can search against to verify whether any of your secrets have leaked in public repositories, gists, or issues on GitHub. This service is called Has My Secret Leaked, and in ggshield you’ll see it as the HMSL commands. There’s also a web interface, but in this section we stay in the terminal and use ggshield end to end.
View Video

Ignore false positives safely with ggshield secret ignore

Dec 31, 2025 By GitGuardian In GitGuardian
In this section, we cover what to do when ggshield finds something you don’t actually need to remediate, like a false positive, an intentionally fake credential in a demo repo, or a known non-sensitive test value. ggshield secret ignore lets you mark specific findings as ignored by adding them to the secrets.ignored_matches section of your local configuration. If your repo doesn’t already have a local config file, ggshield will create a.gitguardian.yaml file for you.
View Video
CalCom

What The New CMMC Rules Mean For DoD Contractors

Dec 30, 2025 By Roy Ludmir In CalCom
If your organization does business with the U.S. Department of Defense, or plans to, you need to know about a major change that just went into force. CMMC, or Cybersecurity Maturity Model Certification, is the Department of Defense’s standard for ensuring contractors meet basic cybersecurity requirements. It was designed to protect sensitive government data across the entire defense supply chain. As of November 2025, CMMC is no longer optional.
Read Post

Stop secrets before they leave your laptop (Git hooks + ggshield install)

Dec 30, 2025 By GitGuardian In GitGuardian
Let's look at Git hooks, which is where ggshield really starts paying off in day-to-day developer workflow. Git hooks are built-in automation in Git. When certain events happen, like committing or pushing, Git checks for specific files inside the.git/hooks folder. If a hook file exists, Git runs it automatically. For example, if there’s a file named pre-commit, Git will execute it every time you commit.
View Video

A New Model You Haven't Heard About (GitHub Raptor Mini)

Dec 29, 2025 By Snyk In Snyk
Can an under-the-radar AI tool actually build a secure, functional CRUD note-taking app from scratch? In this video, I put GitHub Raptor Mini to the test to see if it can design, implement, and reason through a real-world CRUD application — including authentication, data handling, and basic security considerations.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.