GitGuardian has announced a new security solution that targets Non-Human Identities (NHI), like API keys, credentials, access tokens.
According to GitGuardian, NHIs outnumber human identities 50 to 1, and companies often end up with NHIs scattered across their codebases, CI/CD pipelines, and productivity tools.
With GitGuardian NHI Governance, companies gain visibility into where these NHIs are stored, how they are used, their permissions, and other NHIs they are associated with.
It can also detect stale, overprivileged, or compromised secrets, and provide recommendations on how to prioritize remediation for them.
GitGuardian’s new solution also enforces policies throughout the entire life cycle, from onboarding to secrets rotation.
As part of this new offering, the company also announced integrations with five secrets management platforms: HashiCorp Vault, CyberArk Conjur, AWS Secrets Manager, Google Cloud Secrets Manager, and Azure Key Vault.
These integrations can help mitigate the impact of vault sprawl, which is when multiple secrets managers are used across teams. Other benefits include unified visibility, cross-vault incident resolution, secrets life cycle auditing, efficient vault migrations, and streamlined onboarding and policy enforcement.
“Secrets and non-human Identities are now the backbone of modern digital infrastructures, but securing them has become a nightmare for enterprises,” said Eric Fourrier, CEO of GitGuardian. “Through our NHI Security strategy, we’re urging enterprises to step up and regain control of their secrets. We’re giving them a clear, actionable path forward: a way to discover and secure their NHIs at scale while reducing risk and complexity.”
