2026-06-15 16:00
Unlocking workload identity can be challenging. A recent article discusses using HashiCorp Vault as a SPIFFE identity issuer to enhance authorization. Many teams seek a unified identity standard across various environments but face architecture fatigue. The article emphasizes the importance of translating trusted identities into access controls without complicating existing systems. SPIFFE provides a consistent way to represent machine identity, but it doesn’t dictate the execution process....
Source: HashiCorp Blog
Dinesh Gawande
2026-06-11 17:00
🚀 Exciting news! Terraform MCP Server 1.0 is now generally available. This server enhances infrastructure consistency and productivity by integrating AI assistants like GitHub Copilot and IBM Bob into your workflows. Teams can automate repetitive tasks, ensuring compliance and reducing manual efforts. With improved access to workspace data and natural language analysis of plan changes, decision-making becomes quicker and more informed. Security remains a top priority, with controlled access...
Source: HashiCorp Blog
Yushuo Huang
2026-06-09 16:00
🚀 HCP Packer has introduced enforced provisioners, enhancing security and compliance across image builds. This feature allows platform and security teams to define mandatory provisioning steps centrally, ensuring standards are maintained throughout the image lifecycle. By automating compliance checks, organizations can improve security, reduce operational overhead, and increase visibility for audits. Learn more about this capability now available in HCP Packer! 🔍🔒 #HCPCPacker #ImageGovernance...
Source: HashiCorp Blog
Mitchell Ross
2026-06-09 07:09
The rise of dual-use AI, exemplified by Anthropic’s Claude Mythos, is transforming enterprise security. This tool autonomously identifies critical software vulnerabilities, enhancing bug-finding efficiency significantly. 🚀 However, these advancements also present risks. Unauthorized use of AI can lead to rapid, machine-speed exploits, overwhelming traditional security responses. Organizations must focus on enforcing zero trust principles and continuous secret hygiene to mitigate these...
Source: HashiCorp Blog
David Mills
2026-06-04 07:09
🔍 The rise of agentic AI is reshaping identity and access management (IAM). Traditional IAM models are not sufficient for AI agents, which operate in unpredictable ways and require direct access to critical resources. 🔐 HashiCorp Boundary addresses these challenges by providing secure, just-in-time (JIT) access and unique identities for AI agents. This ensures tighter control over permissions and enhances monitoring of agent activities. 📊 With built-in auditing and session recording,...
Source: HashiCorp Blog
Van Phan
2026-06-02 16:00
🚀 HCP Terraform introduces project-level run tasks, now in public beta! This new feature allows organizations to apply security and compliance standards consistently across groups of workspaces, reducing manual effort. With project-level run tasks, platform teams can manage governance more efficiently, ensuring that new workspaces meet required controls instantly. Learn more about this update and how it can enhance your infrastructure management! #HCP #Terraform #CloudManagement...
Source: HashiCorp Blog
Mitchell Ross
2026-05-28 17:00
HashiCorp Vault 2.0 has introduced beta SCIM support, allowing organizations to standardize user and group provisioning from external identity platforms. This feature enhances identity lifecycle management, aligning Vault with authoritative identity providers. It minimizes configuration drift and strengthens governance by automating workflows for joiners, movers, and leavers. 🔒 Teams can now use a consistent, standards-based approach to manage identities, improving compliance and scalability...
Source: HashiCorp Blog
Isabela Palanca Aureus
2026-05-27 07:00
🚀 Exciting updates in HashiCorp Consul 2.0! This release enhances the service networking platform with key features like multi-port support for service mesh on Kubernetes and integration with CyberArk Workload Identity Manager. New capabilities include global rate limiting for RPC traffic and auto-scaling for the API gateway, improving flexibility and scalability in dynamic environments. #HashiCorp #Consul #ServiceMesh #Kubernetes #CloudComputing 🌐
Source: HashiCorp Blog
Van Phan
2026-05-20 17:00
🔒 HashiCorp Vault's Transit secrets engine offers encryption-as-a-service, allowing secure data handling without managing keys directly. For larger artifacts and streaming workloads, traditional methods may cause performance issues. The new SDK introduces envelope encryption, enabling local encryption while Vault manages keys and access policies. This method simplifies key management, allowing operators to efficiently handle data without the overhead of transferring large payloads. #HashiCorp...
Source: HashiCorp Blog
Mohan Madhvapathy Rao
2026-05-19 17:00
🔔 Exciting news for enterprises! Azure hub-and-spoke networking is now generally available for HCP Vault Dedicated. This integration simplifies cloud security by allowing direct connection to centralized Azure networks without custom routing. Private connectivity enhances regulatory compliance and streamlines security management. Organizations using HashiCorp Virtual Networks can now achieve operational efficiency while reducing architecture exceptions. This update will benefit teams managing...
Source: HashiCorp Blog
Dante Okoh
2026-05-13 16:00
🚀 Exciting updates in Terraform 1.15! This release introduces dynamic module sources, allowing variables to define module paths and versions. A new `const` attribute indicates variable usability during initialization. Additionally, there's a new `deprecated` attribute for variables and outputs, providing warnings when outdated elements are used. This helps in managing transitions smoothly. #Terraform #DevOps #CloudComputing #InfrastructureAsCode #TechUpdate
Source: HashiCorp Blog
Jacob Plicque
2026-05-12 16:30
🚀 Terraform Enterprise 2.0 is here to enhance infrastructure operations for scalability and governance! Key features include Stacks for managing multi-tier deployments, project-level notifications for consistent monitoring, and SCIM 2.0 support for automated user management. Improved operational visibility, secure access roles, and enhanced API token management are also introduced to streamline processes and reduce risks. For organizations looking to scale efficiently, Terraform Enterprise...
Source: HashiCorp Blog
Melar Chen
2026-05-12 16:00
🚀 HashiCorp Vault now supports native AI agent management, enhancing identity and access controls for autonomous systems. With traditional IAM needing updates, Vault introduces an agent registry and granular authorization for AI agents. This ensures secure, temporary access tailored to specific tasks. Select customers are testing these features, with a public beta expected this summer. Stay tuned for advancements in AI security! 🔒🤖 #HashiCorp #AI #IAM #Cybersecurity #Innovation
Source: HashiCorp Blog
Violet Hynes
2026-05-12 04:12
🚀 IBM Vault 2.0 is here with significant UI enhancements! The update features in-product guidance to help users maximize their secrets management experience. Improved reporting offers better visibility into usage patterns across various functionalities. 📊 Key upgrades include a visual policy generator, onboarding wizard, and revamped navigation for easier feature discovery. These changes aim to support user onboarding and enhance operational transparency. #IBMVault #TechUpdates...
Source: HashiCorp Blog
Isabela Palanca Aureus
2026-05-11 16:00
🌟 Exciting updates from HashiCorp! HCP Terraform and Terraform Enterprise have introduced key features to enhance governance and security in infrastructure management. 🔍 New capabilities include billable resource analytics, project-level notifications, and module testing for dynamic credentials, now available to help organizations reduce costs and improve visibility. 💡 With billable resource analytics, users can now track resource consumption across projects, enabling better cost management...
Source: HashiCorp Blog
Richard Rundle
2026-05-07 16:00
🔑 IBM Vault Enterprise 2.0 introduces enhanced LDAP secrets management, addressing the challenges of static role lifecycle management. The new architecture allows for centralized rotation, self-managed flows, and automated credential updates. This shift helps reduce security risks and operational friction in enterprises. Key features include customizable scheduling, intelligent retries, and pause/resume controls, ensuring better management of LDAP accounts. Learn how to migrate existing roles...
Source: HashiCorp Blog
David Mills
2026-04-29 19:00
Managing SSH access at scale is critical for modern enterprises. 🔐 This article discusses an updated approach using HashiCorp Vault and Boundary for passwordless SSH access. It emphasizes the shift to SSH certificates for secure, role-based access, addressing key management challenges. Key points include: - Integration of Vault with Boundary for just-in-time credentials. - Updated best practices for configuring Vault. - Focus on SSH certificate authentication to enhance security. Ideal for...
Source: HashiCorp Blog
Moayad Ismail
2026-04-28 16:00
🔍 Secret detection uncovers credential sprawl across various platforms, but simply finding these secrets isn't enough to reduce risk. 🛠️ Vault Radar facilitates a smooth transition from discovery to coordinated action, promoting a stronger remediation process. It helps teams understand the relevance of exposed secrets and encourages collaboration among security, development, and operations teams. 📊 By correlating findings with stored secrets, organizations can prioritize remediation and...
Source: HashiCorp Blog
Chandni Patel
2026-04-23 07:09
Unlock the potential of your PKI lifecycle with IBM Vault's new public CA integration! This expansion allows organizations to automate public certificate workflows alongside private ones, reducing manual processes and errors. Key benefits include a centralized management view, improved governance, and native integration with leading public CAs like Let’s Encrypt and DigiCert. 🌐🔑 Streamline your certificate management today! #IBMVault #PublicCA #PKI #CyberSecurity #Automation
Source: HashiCorp Blog
David Mills
2026-04-22 19:00
Enhance your privileged access monitoring with HashiCorp Boundary and Elastic Auditbeat! 🔍 This integration allows organizations to combine detailed session recordings with structured, kernel-level audit events. This is crucial for industries under strict regulations, such as finance and healthcare. Boundary captures every action during privileged sessions, while Auditbeat provides real-time alerts and structured data for security operations. This two-layer approach optimizes detection and...
Source: HashiCorp Blog
Dan Rohan
2026-04-22 16:00
🚀 Terraform and AWS have introduced pre-written Sentinel policies to aid in achieving ISO/IEC 27001 compliance. These policies simplify the adoption of policy as code, aligning Terraform-managed AWS resources with global security standards. They cover essential controls like access control and secure configuration management. Organizations can now enhance their governance efforts while reducing the complexity of compliance. For more details, check the Terraform Registry. #CloudGovernance...
Source: HashiCorp Blog
Mitchell Ross
2026-04-22 05:00
🔒 The shift from zero trust to continuous trust in AI systems is crucial. Traditional zero trust operates on predictable behavior, but agentic AI challenges this model. Agentic systems continuously interact with environments, making real-time decisions and dynamically requesting access. This evolution highlights the need for short-lived credentials to keep pace with changing workflows. As agentic systems evolve, trust must adapt continuously, creating new access paths that may not be fully...
Source: HashiCorp Blog
Jackson Connell
2026-04-21 16:00
🚀 Banco Bradesco has successfully reduced its digital product delivery time from 80 days to just 5! By implementing HCP Terraform, the bank transformed its infrastructure delivery process, improving compliance and operational control. This shift allows new products to reach the market faster, enhancing innovation without compromising mandatory controls. The integration of Terraform as a centralized orchestration tool streamlined operations, connecting teams and automating workflows....
Source: HashiCorp Blog
Fernando de Araujo Silva
2026-04-17 14:45
Vault Enterprise 2.0 introduces workload identity federation for secret sync, enhancing security in multi-cloud environments. 🌐 This update replaces long-lived static credentials with short-lived tokens, addressing risks associated with credential sprawl and leaks. 🔒 Now, organizations can securely manage secrets across platforms like AWS Secrets Manager and Azure Key Vault with improved reliability. Learn more about modernizing your secret management! #CloudSecurity #IdentityManagement...
Source: HashiCorp Blog
Kartik Lunkad
2026-04-15 15:45
Agentic AI is transforming how we think about trust in identity and access management. Traditional security models relied on human logins, but as AI agents take on tasks, the dynamics change. These agents can create untracked access paths, leading to governance challenges. Two key types of access emerge: delegated and autonomous. Each brings its own risks, complicating control measures. As machine identities outnumber human ones, managing access effectively becomes crucial. #AI #CyberSecurity...
Source: HashiCorp Blog
Aubrey Johnson
2026-04-14 05:09
🚀 Vault Enterprise 2.0 is now available, bringing improved identity-based security and usability enhancements for organizations. Key features include: - Workload identity federation for better security - Expanded credential rotation for Linux - High-performance envelope encryption - Enhanced integrations with tools like Terraform and Kubernetes The release also introduces a new support model aligned with IBM practices, ensuring clearer lifecycle expectations. 🔐 Learn more about these updates...
Source: HashiCorp Blog
Rich DuBose
2026-04-09 07:00
AWS AFT now supports native OIDC integration for Terraform, simplifying dynamic credential management. This update eliminates manual setup for OIDC providers and IAM roles, streamlining workflows while maintaining security with short-lived credentials. Operational complexity is reduced, making it easier for teams to provision secure infrastructure across accounts. Explore this new capability for enhanced efficiency! 🌐🔑 #AWS #Terraform #CloudSecurity #OIDC #InfrastructureManagement
Source: HashiCorp Blog
Mike Doheny
2026-04-01 17:00
🚀 AWS temporary permission delegation is now available in HCP Terraform! This new feature helps organizations streamline their AWS setup while ensuring security. It allows temporary, scoped IAM permission delegation to trusted partners, reducing configuration burdens and accelerating deployment times. With this integration, users can simplify onboarding for AWS services and minimize errors, all while maintaining strict control over permissions. For more details on getting started, check the...
Source: HashiCorp Blog
Mitchell Ross
2026-04-01 16:00
🚀 Exciting news for HCP Terraform users! The platform now supports IP allow lists for resources at both the organization and agent levels. This new feature ensures that tokens are only accepted from trusted IP addresses, enhancing security for infrastructure management. Admins can define CIDR ranges for agent pools, providing flexibility in enforcing network restrictions. This update helps limit access, reducing risks associated with credential exposure. For more information, check out the...
Source: HashiCorp Blog
Mitchell Ross
2026-04-01 16:00
🚀 HCP Terraform has launched IP allow lists at both the organization and agent levels. This new feature allows users to define approved IP addresses for secure access. Previously, access was unrestricted, posing risks, especially for enterprises with strict security needs. Now, organizations can limit token usage to predefined IP ranges, enhancing security measures. This feature is available in HCP Terraform and will soon be in Terraform Enterprise. For more details, refer to the Terraform IP...
Source: HashiCorp Blog
Mitchell Ross
2026-03-27 07:12
🚀 Exciting updates for HashiCorp Cloud Platform (HCP) users! HCP now supports multiple organization owners and organization-level role assignments for project service principals. These enhancements aim to improve operational continuity and security by reducing admin bottlenecks. With multiple owners, critical tasks can be managed by trusted individuals, ensuring no single point of failure. This change also aids in regulatory compliance and seamless offboarding. The new role assignments allow...
Source: HashiCorp Blog
Trevor Powell
2026-03-26 17:00
LAB3 is transforming cloud operations by moving enterprises from ticket-driven workflows to unified processes across infrastructure, security, and networking. 🚀 Their approach highlights the common issue of manual processes that stall cloud adoption. Many organizations believe they’ve modernized, but inefficiencies often remain. LAB3’s methodology focuses on establishing foundational practices before scaling automation. The journey involves three phases: 1️⃣ **Crawl:** Building shared...
Source: HashiCorp Blog
Maile Chaffin-Quiray
2026-03-20 20:30
Organizations are rapidly adopting AI agents that operate autonomously, moving beyond simple chat and code assistants. 🌐 According to Microsoft, 81% of leaders plan to integrate these agents into their strategies within the next 12-18 months. However, traditional identity and access management (IAM) systems struggle to keep pace. Legacy methods are human-centric, while AI agents act independently and can invoke other agents, creating unpredictable access patterns. 🔍 As AI adoption scales, new...
Source: HashiCorp Blog
Tyler Lynch
2026-03-10 16:00
🚀 HCP Vault Dedicated expands its reach with new AWS and Azure regional options! New locations include AWS Stockholm and Paris, along with Azure Australia East and Central. This expansion enhances global flexibility for secure secrets management. Organizations can now deploy closer to applications, improving performance and supporting disaster recovery strategies. #CloudSecurity #VaultDedicated #AWS #Azure #DataProtection
Source: HashiCorp Blog
Dante Okoh
2026-03-05 23:00
🔐 Ariso.ai implements high-performance envelope encryption using HashiCorp Vault's Transit secrets engine. This innovation ensures tenant isolation while processing sensitive data with sub-millisecond latency. Ari, the AI assistant, securely manages messages, transcripts, and credentials, eliminating risks from previous encryption methods. The platform now maintains strict cryptographic isolation across multiple categories of data. Key benefits include: - 0.46ms median latency - 8:1 encrypt-...
Source: HashiCorp Blog
Rich DuBose
2026-02-25 17:00
🚀 Secure remote access is evolving! HashiCorp Boundary offers a solution that simplifies connections without the cumbersome steps typical of traditional PAM and VPN tools. Many engineers face productivity loss due to the "portal tax," which requires multiple logins and context switching. Boundary's native-tool workflow allows users to maintain their usual processes while ensuring security. By operating silently in the background, it streamlines access to resources without interrupting work....
Source: HashiCorp Blog
Saptaparni Nandy
2026-02-24 17:00
🚀 Terraform Enterprise 1.2 is now live, enhancing workflows and visibility for managing cloud infrastructure! Key updates include: - **UI-driven Terraform search**: Easily find and import unmanaged resources without code. - **Explorer dashboard**: Now generally available, it centralizes workspace health and compliance data. - **Enhanced diagnostics**: New API endpoints improve load balancer checks. This release aims to simplify brownfield migration and improve operational efficiency....
Source: HashiCorp Blog
Frederic Lavigne
2026-02-19 17:00
Atruvia is transforming its digital core to overcome legacy IT challenges. By partnering with HashiCorp, they've automated infrastructure, cutting provisioning time from months to just hours. ⏱️ Serving over 900 financial institutions in Germany, Atruvia faced issues like manual workflows and compliance demands. Their strategic shift aims for a more efficient, product-oriented approach. Key achievements include standardizing infrastructure as code and enhancing automation across environments....
Source: HashiCorp Blog
Maile Chaffin-Quiray
2026-02-18 18:00
Benchling transformed its infrastructure management, saving 8,000 developer hours by shifting from decentralized Terraform runs to a centralized platform. This change reduced manual coordination and streamlined workflows, allowing developers to focus on higher-value tasks like disaster recovery automation. Learn more about the specific changes that led to these significant time savings! 💻⏳ #Terraform #Infrastructure #CloudComputing #SaaS #DeveloperEfficiency
Source: HashiCorp Blog
Mitch Pronschinske
2026-02-17 18:45
🚀 Exciting news for HCP Packer users! SBOM vulnerability scanning is now in public beta, enhancing visibility into image components. This feature allows organizations to scan their SBOMs against a known vulnerability database, helping to identify risks earlier in the deployment process. As software supply chains grow complex, this capability supports better security by classifying vulnerabilities based on severity and providing insights for informed remediation. Stay secure! 🔒🛡️...
Source: HashiCorp Blog
Mitchell Ross