Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Great application - saved my butt a few times
What do you like best about the product?
It's proactive and helpful. Easy to use. Great app.
What do you dislike about the product?
would it be possible for gitguardian to fix my repo, at my request, to remove secrets from my repo (including commit history in which secrets were inadvertently commited)?
What problems is the product solving and how is that benefiting you?
I have accidentally committed secret tokens to git a couple of times. It caught the issue and made me aware. It's been a while, though.
- Leave a Comment |
- Mark review as helpful
Catch your secrets instantly
What do you like best about the product?
The steps to integrate the GitGuardian with your version control like GitHub is really easy and also we can integrate it in local as well so that at the time of code commit if you have any secrets like API Keys, IAM Keys or PII etc.gets detected by GitGuardian and it doesn't allow you to commit the code until you remove it. This is very helpful feature of GitGuardian in day to day life of any developer or devops person.
What do you dislike about the product?
There are no cons as such to tell here, it went well so far.
What problems is the product solving and how is that benefiting you?
We wanted something which will block every developer or any other person in our organisation to commit any secrets or PII information which very sensitive for us. And this was solved by GitGuardian and we can now commit and push out code to repositories without any fear of exposing sensitive information.
Beginner friendly
What do you like best about the product?
As a novice, I stumbled upon GitGuardian and utilized it to protect sensitive data, particularly API keys and credentials, from accidental exposure. The tool continuously scans all repositories, including those that are private, in real time, which has been a source of confidence for me. The application is very user-friendly, and alarm bells are raised instantly when any threat is detected. I also appreciate that it does not interrupt my workflow, but rather enhances it by managing to integrate itself within my Git operations so that I devote more time towards coding rather than worrying about managing secrets. Customer support immediately responds with a valid mail about user having lost their confidential information online. This creates ease of implementation for a new member to the github community understanding what to and what not to disclose online. GitGuardian automatically gets active when a potential confidential information is leaked, making it the best among all other security methods. And no matter how many times does somebody repeat a mistake, GitGuardian always has their back which although makes frequency of use more but in the longer run teaches the end user something new each time.
What do you dislike about the product?
GitGuardian has many great functionalities for its users, but one drawback that I found is that some alerts tend to be over sensitive making them pick harmless things that do not require any action. This may be overwhelming especially for the newbie users, who are not yet clear with what a real threat entails. Furthermore, the usability of the software could be enhanced by making alert navigation as well as management easier. Nonetheless, these aspects are only a small fraction compared to the overall functionality commercialized, overall this creates easy environment for learners to protect their data whatsoever reevaluating confidential stuff.
What problems is the product solving and how is that benefiting you?
Anything related to keeping possibly confidential things private, if accidentally leaked on github, is taken care by gitguardian. This in itself is a huge feature.
Good advice on security issues concerning passwords etc.
What do you like best about the product?
Very quick response to issues on GitHub projects.
Detailed explanation of the issue.
Detailed explanation of the issue.
What do you dislike about the product?
Soometimes I think, GitGuardian is not right.
E.g. some infomation is stored in .env files, like passwords or STMP access. This is often not wrong in my mind.
E.g. some infomation is stored in .env files, like passwords or STMP access. This is often not wrong in my mind.
What problems is the product solving and how is that benefiting you?
At the moment, G2 is helping to show potential issues, however most of the time, I considered that as not a high risk issue.
Essential Tool for Detecting Security Risks in Codebases
What do you like best about the product?
GitGuardian is excellent at detecting sensitive information, such as API keys and credentials, in real-time across repositories. It integrates seamlessly with platforms like GitHub and provides timely alerts, which makes securing codebases easy and efficient. The dashboard is intuitive and helps track potential vulnerabilities effectively.
What do you dislike about the product?
The main downside is that the frequent alerts can sometimes feel overwhelming, especially for large projects with many contributors. More fine-tuned control over alert settings could help reduce noise without compromising security.
What problems is the product solving and how is that benefiting you?
GitGuardian helps us prevent sensitive data leaks by automatically scanning for exposed secrets such as API keys, credentials, and tokens in our repositories. This has significantly reduced the risk of security breaches and ensures compliance with security best practices, making our codebase much more secure. It saves us time by automating the process and provides peace of mind knowing that potential vulnerabilities are detected early.
Detecting secret keys as fast at scale
What do you like best about the product?
When i pushed the secret keys or there is an threat in code able to detecting and making noise in my mail box 😉
What do you dislike about the product?
As i think in it.
Nothing as of now.
Nothing as of now.
What problems is the product solving and how is that benefiting you?
If there an threat or vulnerable or secret keys in my code, able to detecting it smootly.
It has caught many secrets I accidentally leaked. And seems to be quite good in monitoring them.
What do you like best about the product?
That it works very fast and it notifies me adequately
What do you dislike about the product?
Could give a false sense of security if it does miss some kind of secret
What problems is the product solving and how is that benefiting you?
I think it's self explanatory
Helps with insidents
What do you like best about the product?
Automated scanning of my github repositories. It's quite easy to use and get started. No implementation struggle so it's easy to implement. I've not tried to contact the customer support but I like that it's available. It's easy to integrate as you just login to github to get started.
What do you dislike about the product?
The cost seems to be quite high. I do understand it's for businesses but it helped me identify a secret key I had left in for my college project. I tend not to use it much as a college student but it's cost does not seem valid to me i.e., low frequency of use.
What problems is the product solving and how is that benefiting you?
I use it to indentify compromised secret keys although it has helped me, it could not detect a password for an email account.
life saver
What do you like best about the product?
it mails us and gives the link making it easy to implement and use and it basically a lifesaver for me as I am someone who usually forgets to protect the API keys it is git guardian which always mails and another good thing is they allow to check if the API key is still valid.
What do you dislike about the product?
there are no major downside to git guardian but If it was possible to remove something from git logs that will be really good
What problems is the product solving and how is that benefiting you?
helping my pocket by letting me know when I forget my API key in the codebase and not hiding it
Great for Catching Secrets, But Needs a Privacy Option
What do you like best about the product?
GitGuardian does a fantastic job at what it’s meant to do—catching secret leaks in your code. I’ve been really impressed with how well it scans my repos and flags potential security issues. It’s definitely something that gives me peace of mind knowing my code is being looked after.
What do you dislike about the product?
There’s no option to exclude private repos from the scans, which feels a bit overkill for me. My private repos are just for my own projects, not shared with anyone, so I really don’t need them to be scanned.
What problems is the product solving and how is that benefiting you?
GitGuardian is solving the issue of accidentally exposing secrets like API keys and credentials in my code. It’s super helpful because it scans my repos automatically and catches things I might have missed.
showing 1 - 10