Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The 2026 Kubernetes Community Day in NYC made trust an execution problem, linking zero trust APIs, agent governance, CVE evidence, and sustainable open source work.

Non-human identities (NHIs) authenticate pipelines, connect microservices, pull from secret managers, and provision cloud resources around the clock. They are also, for most security teams, almost completely invisible. Because there has never been a single place to see all of them at once.

Reliability leaders and subject matter experts at SREday NYC examined how AI, faster delivery, and complex systems increase the need for grounded operational context.

Speakers made it clear that agentic AI is already operating across enterprise workflows. Learn why identity must govern ownership, permissions, actions, and accountability.

The pace is not slowing down. Between May 18 and June 1, 2026, four distinct supply chain campaigns swept through npm, PyPI, Crates.io, GitHub Actions, and Composer.

By rewriting our secret detection engine in Rust, we made our engine more than three times as fast. But not without making it four times slower along the way.

Compare the best secrets management tools for 2026. Reviews of open source, multi-cloud, Kubernetes, and DevOps secrets management solutions for enterprise teams.

This year's report shows how credential sprawl across DevOps, SaaS, CI/CD, the cloud, and developer laptops turns initial access into operational impact.

In an AI-assisted development era, the third edition of BSides312 showed why trust, identity, access, evidence, and community remain core to security work.

Code from GitHub and Grafana is in criminal hands. Secrets buried inside could open doors no one is thinking of protecting yet, and AI will make hunting 0-days in that private code faster than ever.