Read the takeaways from ConFoo 2026, including putting guardrails where requests happen, auditing tool calls, treat dependency updates like production access.

GitGuardian Blog provides insights, tutorials, and updates on secrets management, code security, and developer best practices. Covering topics such as credential leaks, code scanning, and secure development workflows, GitGuardian Blog offers resources for developers, security professionals, and DevOps teams. Readers can learn about detecting and preventing secrets exposure, securing code repositories, and implementing secure coding practices through GitGuardian's articles and security guides.

GitGuardian

A conference recap from ConFoo 2026 in Montreal, centered on the theme of guardrails for fast-moving AI and software systems. Key sessions covered: applying Zero Trust and Identity Aware Proxies to agentic AI access (MCP servers, non-human identities); treating prompts like adversarial inputs with canary tokens and CI/CD-based evaluation; .NET/NuGet supply chain attacks exploiting legitimate extension points like module initializers and source generators; and OWASP Top Ten 2025 as a mirror for systemic control failures. Overarching takeaways: enforce per-request trust over perimeter trust, treat dependency updates as privileged operations, and build observable controls that survive environmental drift.

ConFoo 2026: Guardrails for Agentic AI, Prompts, and Supply Chains

Prompt Hygiene Is the New Input Validation

NuGet as a Delivery Truck With a False Bottom

Build for AI Speed With Control As A Requirement