GitGuardian Platform
GitGuardianExternal reviews
263 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Notify about leaked keys on GitHub quickly and reliably.
What do you like best about the product?
Help check important information that accidentally leaked onto GitHub very well. Keep alerting all the time and work very quickly.
What do you dislike about the product?
Sometimes my git is private. I use it personally, so I let the key slip out, but I get notified all the time. However, there hasn't been any problem. It works well all the time.
What problems is the product solving and how is that benefiting you?
Solve the problem of human error in issues of forgetting or making mistakes.
GitGuardian Automatically Detects and Resolves Security Risks
What do you like best about the product?
It automatically detect and solve security risks
What do you dislike about the product?
I don't have anything about GitGuardian that I dislike
What problems is the product solving and how is that benefiting you?
GitGuardian help me protecting my code base against unintended security problems
Reliable, Trustworthy Help That Makes All the Difference
What do you like best about the product?
Reliable and trustworthy help can make all the difference.
What do you dislike about the product?
Nothing really comes to mind. I couldn’t think of anything to add.
What problems is the product solving and how is that benefiting you?
Sometimes I forget api keys in code and its bad, so GitGuardian helps me.
Saves a Lot of Work When Credentials Are in the Wrong Place
What do you like best about the product?
Saves a lot of work when credentials are in the wrong place
What do you dislike about the product?
When a _Force is activated in a pipeline it gives a warning but does not stop the flow
What problems is the product solving and how is that benefiting you?
Losing credentials
Caught a Real Secret in a Real Project, Fast and Developer-Friendly
What do you like best about the product?
this week it literally saved me from committing a real secret in a small personal Python project. It caught the credential immediately and showed me exactly where it was and how to rotate it. That kind of fast feedback is the main value: it scans commits and PRs in real time, integrates cleanly with GitHub, and gives actionable remediation steps instead of just raising an alarm. It’s very developer-friendly and doesn’t slow down your workflow
What do you dislike about the product?
initial tuning takes some time to reduce false positives and configure ignore rules for non-sensitive test data. Some advanced reporting and bulk management features could be more streamlined in the UI
What problems is the product solving and how is that benefiting you?
It prevents credentials from being exposed in repositories by detecting secrets during development and in existing code. That reduces the risk of security incidents and avoids emergency key rotations. In practice, it saves time, protects personal and production projects, and builds safer habits for developers
Love the Internal Secret Incidents and the ggshield in GitGuardian
What do you like best about the product?
The Internal secret incidents, Honeytokens and the ggshield.
What do you dislike about the product?
Nothing, I don't dislike anything from GitGuardian
What problems is the product solving and how is that benefiting you?
GitGuardian solves the problem of sensitive credentials being accidentally exposed in source code and developer tools, which is a common and high-risk issue in modern development workflows.
Instant Secret Detection That Scales to Large Repos
What do you like best about the product?
What I like best about GitGuardian is how it automatically detects secrets and sensitive data in code — even in large repositories and alerts you instantly.
What do you dislike about the product?
One thing I dislike about GitGuardian is that it can sometimes generate false positives, which requires manual review and can slow things down slightly
What problems is the product solving and how is that benefiting you?
GitGuardian solves the problem of exposed secrets and sensitive data in source code and version control systems. It continuously scans code repositories, commits, pull requests, and CI/CD pipelines to automatically detect API keys, credentials, tokens, and other secrets that shouldn’t be in code. By alerting developers and security teams instantly, it prevents leaks that could lead to unauthorized access, data breaches, or financial loss.
The benefits I get from this are:
🔒 Better security — I don’t have to worry about secrets accidentally being committed.
⚡ Faster detection — Issues are caught early, before they reach production.
👩💻 Smoother development workflows — Developers can focus on building rather than manually auditing code.
📊 Clear visibility and tracking — I can see where exposures happen and fix them quickly.
The benefits I get from this are:
🔒 Better security — I don’t have to worry about secrets accidentally being committed.
⚡ Faster detection — Issues are caught early, before they reach production.
👩💻 Smoother development workflows — Developers can focus on building rather than manually auditing code.
📊 Clear visibility and tracking — I can see where exposures happen and fix them quickly.
Excellent Protection Against Accidental Data Leaks
What do you like best about the product?
It protects against distractedly publishing information that passes inspection when AI engines create .gitignore files. It can even find it in a casual comment.
What do you dislike about the product?
Not a major downside, but sometimes it flags test strings, dummy values.
What problems is the product solving and how is that benefiting you?
I use many API values that obviously should not appear in any repo, even private. GitGuardian does a great job at this task.
Accurate Secret Detection with Seamless GitHub Integration
What do you like best about the product?
it is very easy to implement and does not require heavy configuration to start delivering value. The onboarding process is straightforward, and integrations with GitHub and CI/CD pipelines work smoothly, allowing teams to get up and running quickly. I use GG frequently as part of daily development and code review workflows, and it fits naturally without slowing anyone down.
Customer support has been responsive and helpful whenever clarification or guidance was needed, especially during initial setup and alert tuning. The accuracy of secret detection, combined with clear alerts and remediation guidance, makes it a practical security tool that developers actually trust and consistently use.
Customer support has been responsive and helpful whenever clarification or guidance was needed, especially during initial setup and alert tuning. The accuracy of secret detection, combined with clear alerts and remediation guidance, makes it a practical security tool that developers actually trust and consistently use.
What do you dislike about the product?
The pricing may seem somewhat steep for smaller teams or early-stage startups, particularly when expanding usage to multiple repositories. At first, some alerts might need to be adjusted to minimize unnecessary notifications, which involves a bit of a learning curve. Furthermore, the advanced features and options for policy customization could offer greater flexibility, especially for organizations that have highly specific internal security processes.
What problems is the product solving and how is that benefiting you?
This tool helps me prevent accidental credential leaks, which pose significant security risks and compliance challenges. By identifying secrets early in commits and pull requests, it lowers the likelihood of production breaches, unauthorized access, and expensive incident responses. As a result, it enhances overall security, saves developers time, and fosters client trust by ensuring sensitive data is well protected.
Top-Notch Secret Detection and Auto Review Features
What do you like best about the product?
The auto review of the files after pushing and the detection system of the secrets is top notch of the Gitguardian. That's what I love most about it.
What do you dislike about the product?
Nothing specific but the process of finding the leaked variable is a little difficult which can be improved
What problems is the product solving and how is that benefiting you?
There are many problems that it is solving like for example env variables leak detection, even security detection if there is any kind of vulnerability or something in the code.
This really helps me to protect my secrets from the world and in very very efficient way
Because it is really difficult to keep up the detection yourself if the code is thousands of lines.
This really helps me to protect my secrets from the world and in very very efficient way
Because it is really difficult to keep up the detection yourself if the code is thousands of lines.
showing 1 - 10