Blog

Practical writing for developers who care about their tools.

18 articles

Latest5 min read

How CI/CD Pipelines Leak Secrets (And How to Catch It Before Push)

Your GitHub Actions workflow might be printing your secrets to the logs right now. Common CI/CD leak patterns and how to detect them.

By Sumit Khanna

6 min readSumit Khanna

How to Rotate Production Secrets Without a Single Second of Downtime

The reason nobody rotates secrets is that it's terrifying. Here's how dual-active credential windows make it safe.

secret rotationrotate api keyszero downtime rotation
4 min readSumit Khanna

The One Git Hook Every Developer Should Install Before They Ship

One command. Runs forever. Blocks 100% of accidental secret commits before they reach git.

pre-commit hook secretsgit hooks securityblock secret commits
5 min readSumit Khanna

MCP Config Files Are the New .env: The Security Risk Nobody's Talking About

MCP config files often contain plaintext database passwords and API keys. Most developers don't know they exist.

mcp config securitymcp json secretsmodel context protocol security