The Good Tech Companies - Aembit Extends Secretless CI/CD With Credential Lifecycle Management For GitLab
Episode Date: August 26, 2025This story was originally published on HackerNoon at: https://hackernoon.com/aembit-extends-secretless-cicd-with-credential-lifecycle-management-for-gitlab. Credentials ...are short-lived, policy-controlled access that is created only when required and revoked automatically. This reduces the risk of misuse while giving Check more stories related to web3 at: https://hackernoon.com/c/web3. You can also check exclusive content about #web3, #aembit, #chainwire, #press-release, #aembit-announcement, #blockchain-development, #crypto-exchange, #good-company, and more. This story was written by: @chainwire. Learn more about this writer by checking @chainwire's about page, and for more stories, please visit hackernoon.com. Aembit introduces Credential Lifecycle Management and the availability of Aembit Edge as a native GitLab integration. Credentials are short-lived, policy-controlled access that is created only when required and revoked automatically. This reduces the risk of misuse while giving development teams a simpler way to work inside GitLab.
Transcript
Discussion (0)
This audio is presented by Hacker Noon, where anyone can learn anything about any technology.
Aembit extends secretless C, CD with credential life cycle management for GitLab.BY chainwire.
Silver Spring, USA, Maryland, August 26, 2025, Cyber Newswire, EMBIT, the workload identity and access management.
I AM, company.
Today announced new capabilities for GitLab designed to reduce the security risks of long-lived D personal access tokens,
Pats, and other secrets needed to automate software delivery, while making it easier to deploy
and manage pipelines. With the introduction of credential life cycle management and the availability
of Embed Edge as a native GitLab integration, the MBIT replaces static credentials with short-lived,
policy-controlled access that is created only when required and revoked automatically.
This reduces the risk of misuse while giving development teams a simpler, more reliable way to work
inside GitLab. GitLab is one of the most widely used platforms for building and deploying
software, enabling the automation that moves code from development into production. Its popularity
has also made it a frequent target. Long-lived decredentials and unmanaged service accounts have
been exposed in several high-profile breaches, including incidents at Pearson in the Internet
archive, leading to stolen data and costly downtime. The MBIT credential lifecycle management addresses
these risks directly. Instead off-pats that linger for months or years, the embit issues short-lived
credentials only when a pipeline job requires them, then automatically expires them. Accesses tied to
cryptographically verifiable workload identity and multi-factor authentication, MFA checks and controlled by a policy
enforced at runtime, giving organizations both stronger protection and clear audit records of which
workloads accessed which resources and when. Meanwhile, related service accounts are created and
removed on demand, ensuring that no unused accounts remain active.
Aembit is now listed in the GitLab C-CD component catalog.
This makes an embed directly available inside GitLab, allowing teams to add it to their pipelines
without extra configuration or manual setup. This native integration simplifies the process of
connecting pipelines and cloud services, reducing reliance on embedded secrets and manual
credential handling. Greater than, developers want to move quickly,
without worrying about where a credential is greater than stored or whether it needs to be
rotated, said Kevin Sapp, co-founder and CTO greater than of MBID. Security teams, on the other hand,
want assurance that nothing is greater than left exposed. What we've built for GitLab satisfies
both needs at once, greater than developers get seamless access in their pipelines, and security
leaders get greater than the confidence that access is temporary, accountable, and safe. Organizations,
such as Snowflake, that have adopted the Aembit Workload IAM platform report meaningful reductions
in the time spent managing credentials and fewer disruptions following security incidents.
Security teams value the ability to enforce least privilege automatically, while developers
appreciate that tokens are provisioned and revoked transparently without additional coding or
manual steps. By embedding these controls into GitLab, the MBIT allows enterprises to strengthen
security while maintaining the speed and consistency expected of modern software pipelines.
The scale of the issue is significant. Non-human identities already outnumber human ones by at least
45 to 1, and credential abuse remains a leading attack vector according to the 2025 Verizon
data breach investigations report. The rise of agentic AI is adding even more autonomous workloads,
increasing the demand for secure, short-term access controls. At the same time, engineering teams lose hours
each week to manual credential rotation, a process that cannot keep pace with sprawling pipelines
and multi-cloud environments. Both GitLab credential life cycle management and the
Embed Edge component are available immediately. Customers can begin with the MBIT starter tier and expand
into enterprise-grade policy enforcement, conditional access, and reporting as requirements mature.
About MB to Embed is the leading provider of workload identity and access management solutions,
designed to secure non-human identities like AI agents, applications, and service accounts across
on-premises, SaaS, cloud, and partner environments.
Aembit's no-code platform enables organizations to enforce access policies in real-time,
ensuring the security and integrity of critical infrastructure.
User scan visit Aembit.io and follow the company on LinkedIn.
Contact CMO AemBIRVA-D-Info at Aembit.IOTIS story was published as a press release by Chainwire
under Hackernoon's business blogging program. Thank you for listening to this Hackernoon story,
read by artificial intelligence. Visit hackernoon.com to read, write, learn and publish.