NHI Secrets Sprawl: How to Fix the Non-Human Identity Credential Crisis
GitGuardian’s State of Secrets Sprawl 2026 report landed with a jarring finding: 29 million secrets were detected on public GitHub in the past year alone. More alarming — credentials for AI services (OpenAI, Anthropic, Hugging Face, Cohere) surged 81% year-over-year, driven by developers rushing to integrate LLMs without applying the same discipline they’d use for database passwords. And 64% of secrets exposed in 2022 were still valid and unrevoked in 2025. ...