GitGuardian Platform
GitGuardianExternal reviews
263 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The perfect GitHub companion.
What do you like best about the product?
It helps you track any sensitive data you may have shared in the repos, either public or private.
Its algorithm is pretty advanced and I've never had any false positives but it finds easily when secrets are shared, even from non-famous softwares like webhooks api keys and stuff like that.
Super suggested, a must have on GitHub in my opinion.
Its algorithm is pretty advanced and I've never had any false positives but it finds easily when secrets are shared, even from non-famous softwares like webhooks api keys and stuff like that.
Super suggested, a must have on GitHub in my opinion.
What do you dislike about the product?
It really enforces you to be disciplined in GitHub with your secrets, it takes the slack completely off and it improves how careful you become with your .env files.
I guess it's not a bad one actually haha
Actually the only thing I'd love to see is a way of easily removing secrets that may have been shared on past commits, but that's more on Git than on this software I guess.
I guess it's not a bad one actually haha
Actually the only thing I'd love to see is a way of easily removing secrets that may have been shared on past commits, but that's more on Git than on this software I guess.
What problems is the product solving and how is that benefiting you?
It's solving the problem on thoroughly making sure the repo doesn't contain any secrets that may be exposed.
Anytime that happens is a huge issue as bad guys are always monitoring GitHub too for that to happen so to be notified right away is great!
Anytime that happens is a huge issue as bad guys are always monitoring GitHub too for that to happen so to be notified right away is great!
Recommendations to others considering the product:
There's no reason to non connect this software to your repos. It even has a generous free version so no reasons why not doing that.
Has saved me from making mistakes at 3am more than once
What do you like best about the product?
GitGuardian is very painless to use, has a simple and intuitive UI, and will tell you specifically where you made a mistake in regards to secrets or exploitable methods.
What do you dislike about the product?
Initial usage can be a bit daunting - there's alot to take in at first, and it is a bit irritating that private collaborative repositories are not under the default plan (although that is understandable)
What problems is the product solving and how is that benefiting you?
When working late hours on code, GitGuardian helps prevent making innocent mistakes, where an IDE might automatically add a configuration file to a branch push that contains a secret.
Detects quite a few secrets already!
What do you like best about the product?
The service is currently actively detecting quite a few keytypes and other secrets, as you can tell from the OWASP WrongSecrets testbed.
What do you dislike about the product?
It does not detect everything yet: I did not get warnings on some of the callbacks (e.g. Slack Webhooks), but i did on many tokens already.
What problems is the product solving and how is that benefiting you?
It helps detecting secrets in code & it can warn out of band by email about which secrets it found. This can greatly help ensuring secrets remain out of code.
Recommendations to others considering the product:
Start with open source tools first and then see how GitGuardian can help you improve your posture!
GitGuardian Review
What do you like best about the product?
The dashboard, detailed incident information, detector quality, and availability of integrations.
What do you dislike about the product?
Nothing to report for now, but I need more time...
What problems is the product solving and how is that benefiting you?
Mostly incidents with secrets due to the development of products using git.
It does exactly what its name suggests
What do you like best about the product?
It shows the vulnerabilities and exposed secrets in your repositories which is really critical as git is one the most overlooked, yet common sources of security breaches.
What do you dislike about the product?
So far, not much. Hopefully as I used it more, it stays the same.
What problems is the product solving and how is that benefiting you?
It reveals the security issues that I had failed to notice, specially dealing with so many branches and commit histories. I also really like the feature showing which developers most likely know about the exposed secrets.
GitGuardian: Code Scanner for CICD microservices
What do you like best about the product?
GitGuardian is an excellent tool to scan the code after every commit. It makes sure that developers didn't commit any secret value in the code by mistake. We have integrated it with the CI pipelines, and I must say that interation is very easy. We can monitor all the repo and reports from a single dashboard. ONe of the think which I like is, GitGuardian provides integration with almost all the CI tools and microservices tools.
What do you dislike about the product?
Currently, the features are limited to secrets scan, It's not something to dislike, but I would like to see the features like Docker image scan and IaC scans in the future.
What problems is the product solving and how is that benefiting you?
We generally encountered issues like pushing the tokens and secrets to the git repos. GitGuardian is helping by scanning the repos after every commit. This tool is beneficial for beginner developers and DevOps teams.
A great tool for monitoring Git repositories for accidental leaks
What do you like best about the product?
The best feature is automatic scanning and alerts right into your mail.
What do you dislike about the product?
Not really much to dislike in this product as it does what its supposed to do very well, the only issue I faced are false positives.
What problems is the product solving and how is that benefiting you?
GitGuardian has been a great tool in identifying leaked secret keys and passwords which were changed or disabled to prevent any further damages.
Django Sceret Key
What do you like best about the product?
GitGuardian is absolutely great for identifying secrets that may have been left in the code accidentally and which can prove fatal to the organization. However GitGuardian makes your life even easier, it allows you to view where actually the code is in i.e. which file and folder, it lets you provide tags, and finally assign it to someone from your organization to resolve it. Every one of these crucial steps can be done easily and swiftly by using GitGuardian.
What do you dislike about the product?
While writing the things I like about GitGuardian, I didn't write about the severity functionality. That is because all the times it has caught the Django secrets it has not been able to predict or ascertain the severity of that. I'd love it if it could learn about what is severe and what is not. This would definitely help in the short and long term.
What problems is the product solving and how is that benefiting you?
I am a Django developer and had also developed a few android applications. GitGuardian came in clutch when it informed me about an API key that I had left in the Git code. It also saves me every time when it comes to Django secrets as I usually forget to remove them from the Git Code.
We are using GitGuardian to scan Django our repos for credentials that might have been commited
What do you like best about the product?
You get a worry-free commit. Integrated into the SDLC pipeline, it is helpful for internal security, mainly if the credentials are not not to be shared with the public. Better, since we produce open-source software, GitGuardian helps ensure we do not publish sensitive info that somebody can use to target us. The fact that you can restrict the scan of particular folders is very appreciated.
What do you dislike about the product?
It scans even sub repositories that are not ours. If some packages that we use but do not maintain are included in the scan, we get false positives that we wouldn't like to have. Fortunately, that can be easily corrected on the GUI.
What problems is the product solving and how is that benefiting you?
We use GitGuardian to solve the problem of securing our repositories, especially when we have new developers that do not know best practices for not including sensitive information in their commits. GitGuardian has been helpful to remind them that.
Essential security tool for modern developers
What do you like best about the product?
Automated monitoring and checking for accidentally published secrets
What do you dislike about the product?
It would be nice to be able to rank identified issues to facilitate addressing them according to severity.
What problems is the product solving and how is that benefiting you?
Able to easily identify where I may have accidentally leaked secrets in Git repos.
Benefit is that I can address those concerns: delete the secrets from the repo and revoke the keys from the applications that issued them.
Benefit is that I can address those concerns: delete the secrets from the repo and revoke the keys from the applications that issued them.
showing 71 - 80