Sold by: GitGuardian
Deployed on AWS
Vendor Insights
The end-to-end secrets security platform for enterprises. Scan and fix hardcoded secrets in source code, CI/CD pipelines, and productivity tools with GitGuardian code security platform.
Overview
GitGuardian is an end-to-end secrets security platform that empowers software-driven organizations to enhance their Non-Human Identity (NHI) security and comply with industry standards.
With attackers increasingly targeting NHIs, such as service accounts and applications, GitGuardian integrates Secrets Security and Secrets Observability. This dual approach enables the detection of compromised secrets across your dev environments while also managing legitimate secrets and their lifecycle.
The platform supports over 450+ types of secrets, offers public monitoring for leaked data, and deploys honeytokens for added defense
Trusted by over 600,000 developers, GitGuardian is the choice of leading organizations like Snowflake, ING, BASF, and Bouygues Telecom for robust secrets protection.
Highlights
- With Secrets Security, GitGuardian aims to eliminate leaks and sprawl, detecting compromised or misused secrets across both public and internal environments. This foundation of NHI security is strengthened by monitoring for incidents, policy violations, and illegitimate use of secrets.
- GitGuardian's Secrets Detection tackles internal secrets sprawl by identifying sensitive data in source code and productivity tools. The platform supports over 450 types of secrets, including API keys, private keys, and database credentials. With a robust policy engine, security teams can enforce rules across major Version Control Systems ( like GitHub, GitLab, BitBucket, and Azure DevOps, CI/CD tools such as Jenkins, Travis CI as well as tools like Slack, Jira, container registries, and more.
- To expand visibility beyond internal systems, GitGuardian Public Monitoring scans public GitHub repositories, detecting sensitive information in both organizational and developers' personal repos. This is crucial, as 80% of corporate secrets leaked on public GitHub stem from personal accounts.
Details
Sold by
Delivery method
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(2)
SOC2
GDPR
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
25 developers | Business Plan, per 25 contributing developers (annual contract) | $5,500.00 |
Vendor refund policy
Please contact sales@gitguardian.com to learn more about GitGuardian's refund policy.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Explore our guides to use the GitGuardian Platform https://docs.gitguardian.com or submit a support request at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By GitGuardian
By CyberArk
By Doppler
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Secrets Detection
Advanced platform capable of identifying over 450 types of sensitive credentials including API keys, private keys, and database credentials
Policy Enforcement
Robust policy engine that enables rule implementation across multiple version control systems, CI/CD tools, and productivity platforms
Public Repository Monitoring
Comprehensive scanning of public GitHub repositories to detect sensitive information leakage from organizational and personal accounts
Non-Human Identity Security
Integrated approach for managing and protecting service accounts, application credentials, and other non-human authentication mechanisms
Incident Detection
Real-time monitoring and identification of compromised, misused, or illegitimate secrets across internal and external environments
Secrets Management
Centralized platform for securely managing and rotating credentials across multi-cloud and hybrid environments
Identity Authentication
Secure authentication mechanism for applications, automation tools, and non-human identities accessing sensitive resources
DevSecOps Integration
REST API-enabled solution with extensive integration capabilities for DevOps tools and container platforms
Access Control
Centralized control and auditing of privileged credentials and secrets usage across databases and cloud environments
Scalability
Enterprise-grade solution designed to support large-scale deployments with data sovereignty and global enterprise requirements
Secret Management
Cloud-hosted platform for centralized secrets management and orchestration
Access Control
Scalable and flexible access controls with detailed activity logs for real-time management
Environment Integration
Automatic secret synchronization across multiple projects, teams, and infrastructure environments
Development Workflow
Native VS Code extension with two-way secret synchronization and CLI support for local development
Credential Security
Automated credential rotation mechanism to prevent potential data breaches and security vulnerabilities
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
-
-
No security profile
No security profile
Standard contract
No
No
Customer reviews
4
2 ratings
2 AWS reviews
|
241 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Computer Software
Fast, and easy
Reviewed on Sep 04, 2025
Review provided by G2
What do you like best about the product?
I don't know when i enabled this service but I was really impressed on how it caught on to one of my exposed secrets, the notification was a huge help since i nearly had felt scared thinking that I exposed something but it was a fake key, still impressive, better to get it than not
What do you dislike about the product?
I can't login in mobile to see my error. It would be helpful since I don't carry my laptop around all the time
What problems is the product solving and how is that benefiting you?
It solved simple checks to see if my code was secure and didn't leak anything out of ordinary, this helped me fix errors before they can break my stuff
Information Technology and Services
GitGuardian Journey
Reviewed on Aug 26, 2025
Review provided by G2
What do you like best about the product?
Well the fact that aside from notifying you it tells you the specific location it helps a lot specially with a codebase that uses frameworks it kinda get messy. Since I install gitguardian all my repository is connected into it seamlessly.
What do you dislike about the product?
None so far but I would guess I don't know if it exist but it would be amazing to make it on click and store or remove the keys directly
What problems is the product solving and how is that benefiting you?
Well primarily it helps us really stored our keys.
Jarod C.
It is extremely useful and easy to use. It helped me improve the security of my software
Reviewed on Aug 04, 2025
Review provided by G2
What do you like best about the product?
In addition to presenting the problem, it also presents the solution, description, and criticality of the issue.
What do you dislike about the product?
There's nothing I don't like for now. Its a good software
What problems is the product solving and how is that benefiting you?
Exposes of secrets
Antonio S.
Always making sure that my repos are not exposed.
Reviewed on Jul 30, 2025
Review provided by G2
What do you like best about the product?
The instant emails about a potential threat
What do you dislike about the product?
Nothing. I think GitGuardian does a good job of protecting my repos
What problems is the product solving and how is that benefiting you?
The problems that gitguardian is solving is when I forget to protect API keys and I push something into my repo
Rishabh D.
GitGuardian saving your secrets
Reviewed on Jul 30, 2025
Review provided by G2
What do you like best about the product?
I like the fact GitGuardian automatically checks and find all the secrets or suspicious things in the code and helps developers discovering them. This, although seems little for a non-developer is a very big thing as these secrets can leads to major data loss, security concerns and even loss of business.
What do you dislike about the product?
Could be a little more powerful to detect all the secrets and also not pose a threat if something is not a secret even if it looks like so. Example env variables should be skipped.
What problems is the product solving and how is that benefiting you?
Whenever I push code, we have a lot of environment variables that needs to be taken care of. Sometimes these confidential values get passed into tracked files in Git, unknowingly or by mistake, especially during vibe-coding which is a very big thing nowadays. GitGuardian plays a very very big role in discovering these essential secrets that cannot and should not be exposed to the outside world or could lead to serious damages to the company or business or even an individual and disrupt the work.
So GitGuardians security checks are very essential and needed.
So GitGuardians security checks are very essential and needed.