Summary of “State of Secrets Sprawl 2026”
In just a year, AI-assisted coding has transformed from a novelty into a mainstream activity. By 2025, it was clear that:
- Software Development Soared:
- Public GitHub commits reached approximately 1.94 billion, a 43% increase from the previous year.
- The active developer base grew 33%.
However, this speed comes with significant risks:
- Secrets Sprawl:
- Over 28.65 million new hardcoded secrets were added to public GitHub, marking a 34% annual increase.
- AI service secrets alone surged by 81% year-over-year.
The report emphasizes the need for heightened security measures, especially as individual workflows contribute to the leak of critical data.
As AI accelerates software production, security protocols must evolve. Organizations need to address the three Ws of non-human identities:
- What exists?
- Who owns them?
- What can they access?
Join the conversation! Share your thoughts on the balance between innovation and security in AI development.
