'Secrets Sprawl' Haunts Software Supply Chain Security

A cybersecurity startup is warning of a major, unattended weak link in the software supply chain: the vexing problem of valuable corporate secrets -- API keys, usernames and passwords, and security certificates -- publicly exposed in corporate repositories.
read more