GitGuardian Platform
GitGuardianExternal reviews
260 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Reliable, Trustworthy Help That Makes All the Difference
What do you like best about the product?
Reliable and trustworthy help can make all the difference.
What do you dislike about the product?
Nothing really comes to mind. I couldn’t think of anything to add.
What problems is the product solving and how is that benefiting you?
Sometimes I forget api keys in code and its bad, so GitGuardian helps me.
Saves a Lot of Work When Credentials Are in the Wrong Place
What do you like best about the product?
Saves a lot of work when credentials are in the wrong place
What do you dislike about the product?
When a _Force is activated in a pipeline it gives a warning but does not stop the flow
What problems is the product solving and how is that benefiting you?
Losing credentials
Caught a Real Secret in a Real Project, Fast and Developer-Friendly
What do you like best about the product?
this week it literally saved me from committing a real secret in a small personal Python project. It caught the credential immediately and showed me exactly where it was and how to rotate it. That kind of fast feedback is the main value: it scans commits and PRs in real time, integrates cleanly with GitHub, and gives actionable remediation steps instead of just raising an alarm. It’s very developer-friendly and doesn’t slow down your workflow
What do you dislike about the product?
initial tuning takes some time to reduce false positives and configure ignore rules for non-sensitive test data. Some advanced reporting and bulk management features could be more streamlined in the UI
What problems is the product solving and how is that benefiting you?
It prevents credentials from being exposed in repositories by detecting secrets during development and in existing code. That reduces the risk of security incidents and avoids emergency key rotations. In practice, it saves time, protects personal and production projects, and builds safer habits for developers
Instant Secret Detection That Scales to Large Repos
What do you like best about the product?
What I like best about GitGuardian is how it automatically detects secrets and sensitive data in code — even in large repositories and alerts you instantly.
What do you dislike about the product?
One thing I dislike about GitGuardian is that it can sometimes generate false positives, which requires manual review and can slow things down slightly
What problems is the product solving and how is that benefiting you?
GitGuardian solves the problem of exposed secrets and sensitive data in source code and version control systems. It continuously scans code repositories, commits, pull requests, and CI/CD pipelines to automatically detect API keys, credentials, tokens, and other secrets that shouldn’t be in code. By alerting developers and security teams instantly, it prevents leaks that could lead to unauthorized access, data breaches, or financial loss.
The benefits I get from this are:
🔒 Better security — I don’t have to worry about secrets accidentally being committed.
⚡ Faster detection — Issues are caught early, before they reach production.
👩💻 Smoother development workflows — Developers can focus on building rather than manually auditing code.
📊 Clear visibility and tracking — I can see where exposures happen and fix them quickly.
The benefits I get from this are:
🔒 Better security — I don’t have to worry about secrets accidentally being committed.
⚡ Faster detection — Issues are caught early, before they reach production.
👩💻 Smoother development workflows — Developers can focus on building rather than manually auditing code.
📊 Clear visibility and tracking — I can see where exposures happen and fix them quickly.
Excellent Protection Against Accidental Data Leaks
What do you like best about the product?
It protects against distractedly publishing information that passes inspection when AI engines create .gitignore files. It can even find it in a casual comment.
What do you dislike about the product?
Not a major downside, but sometimes it flags test strings, dummy values.
What problems is the product solving and how is that benefiting you?
I use many API values that obviously should not appear in any repo, even private. GitGuardian does a great job at this task.
Accurate Secret Detection with Seamless GitHub Integration
What do you like best about the product?
it is very easy to implement and does not require heavy configuration to start delivering value. The onboarding process is straightforward, and integrations with GitHub and CI/CD pipelines work smoothly, allowing teams to get up and running quickly. I use GG frequently as part of daily development and code review workflows, and it fits naturally without slowing anyone down.
Customer support has been responsive and helpful whenever clarification or guidance was needed, especially during initial setup and alert tuning. The accuracy of secret detection, combined with clear alerts and remediation guidance, makes it a practical security tool that developers actually trust and consistently use.
Customer support has been responsive and helpful whenever clarification or guidance was needed, especially during initial setup and alert tuning. The accuracy of secret detection, combined with clear alerts and remediation guidance, makes it a practical security tool that developers actually trust and consistently use.
What do you dislike about the product?
The pricing may seem somewhat steep for smaller teams or early-stage startups, particularly when expanding usage to multiple repositories. At first, some alerts might need to be adjusted to minimize unnecessary notifications, which involves a bit of a learning curve. Furthermore, the advanced features and options for policy customization could offer greater flexibility, especially for organizations that have highly specific internal security processes.
What problems is the product solving and how is that benefiting you?
This tool helps me prevent accidental credential leaks, which pose significant security risks and compliance challenges. By identifying secrets early in commits and pull requests, it lowers the likelihood of production breaches, unauthorized access, and expensive incident responses. As a result, it enhances overall security, saves developers time, and fosters client trust by ensuring sensitive data is well protected.
Top-Notch Secret Detection and Auto Review Features
What do you like best about the product?
The auto review of the files after pushing and the detection system of the secrets is top notch of the Gitguardian. That's what I love most about it.
What do you dislike about the product?
Nothing specific but the process of finding the leaked variable is a little difficult which can be improved
What problems is the product solving and how is that benefiting you?
There are many problems that it is solving like for example env variables leak detection, even security detection if there is any kind of vulnerability or something in the code.
This really helps me to protect my secrets from the world and in very very efficient way
Because it is really difficult to keep up the detection yourself if the code is thousands of lines.
This really helps me to protect my secrets from the world and in very very efficient way
Because it is really difficult to keep up the detection yourself if the code is thousands of lines.
Comprehensive Password Leak Detection You Can Trust
What do you like best about the product?
I fancy that GitGuardian let's me know almost all the possible issues with leaked passwords as there is to know.
What do you dislike about the product?
I can't really think of something I dislike about their service. We're all progressing in life and so are the systems. Maybe in future it is possible to scan *example set passwords and flag them as not a real hard coded password, with the use of ai.
What problems is the product solving and how is that benefiting you?
This system gives me some assurance about hard coded passwords in my code. Although I can be pretty sure about my code it's nice to have another system to double check the facts.
Automated Secrets Checking and Incident Dashboard—All for Free!
What do you like best about the product?
Automated secrets checking and an incident dashboard -- and for free! Once the extension is installed and/or the cli, use is nearly effortless. AI assistants easily perform scans with little prompting specificity required, so the barriers to integration are pretty low too.
What do you dislike about the product?
In my experience, secret remediation hasn't been as automated as I would find helpful, at least with my current setup. However, I should note that I haven't fully explored all the available options in this area yet.
What problems is the product solving and how is that benefiting you?
Preventing the commitment of secrets is a highly effective way to reduce the potential attack surface and guard against intrusions.
GitGuardian: Robust Secret Detection with Seamless Integration
What do you like best about the product?
I like GitGuardian because it quickly detects secrets, gives clear alerts, integrates easily with GitHub, and helps fix issues fast.
What do you dislike about the product?
Sometimes GitGuardian gives false positives, so manual review is needed. Alert rules, context, and customization could be improved to reduce noise.
What problems is the product solving and how is that benefiting you?
I use GitGuardian to detect exposed secrets and sensitive information, preventing security leaks and maintaining secure development practices. It reduces security risks, saves investigation time, and improves overall code security.
showing 1 - 10