Tag: credentials

Cloud Workload Identity Federation: Eliminating Long-Lived Credentials in CI/CD

CI/CD long-lived cloud credentials stored in secrets are compromised constantly — Workload Identity Federation issues short-lived tokens that expire before they can be meaningfully abused.

May 11, 2026
GCP Service Account Key Sprawl: Managing the Credentials You Forgot Existed

GCP service account keys that are never rotated are effectively permanent credentials — every key that exists is an attack surface that should ideally not exist.

April 9, 2026

Cloud Workload Identity Federation: Eliminating Long-Lived Credentials in CI/CD