GitGuardian Platform
GitGuardianExternal reviews
256 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Has saved me from making mistakes at 3am more than once
What do you like best about the product?
GitGuardian is very painless to use, has a simple and intuitive UI, and will tell you specifically where you made a mistake in regards to secrets or exploitable methods.
What do you dislike about the product?
Initial usage can be a bit daunting - there's alot to take in at first, and it is a bit irritating that private collaborative repositories are not under the default plan (although that is understandable)
What problems is the product solving and how is that benefiting you?
When working late hours on code, GitGuardian helps prevent making innocent mistakes, where an IDE might automatically add a configuration file to a branch push that contains a secret.
Detects quite a few secrets already!
What do you like best about the product?
The service is currently actively detecting quite a few keytypes and other secrets, as you can tell from the OWASP WrongSecrets testbed.
What do you dislike about the product?
It does not detect everything yet: I did not get warnings on some of the callbacks (e.g. Slack Webhooks), but i did on many tokens already.
What problems is the product solving and how is that benefiting you?
It helps detecting secrets in code & it can warn out of band by email about which secrets it found. This can greatly help ensuring secrets remain out of code.
Recommendations to others considering the product:
Start with open source tools first and then see how GitGuardian can help you improve your posture!
GitGuardian Review
What do you like best about the product?
The dashboard, detailed incident information, detector quality, and availability of integrations.
What do you dislike about the product?
Nothing to report for now, but I need more time...
What problems is the product solving and how is that benefiting you?
Mostly incidents with secrets due to the development of products using git.
It does exactly what its name suggests
What do you like best about the product?
It shows the vulnerabilities and exposed secrets in your repositories which is really critical as git is one the most overlooked, yet common sources of security breaches.
What do you dislike about the product?
So far, not much. Hopefully as I used it more, it stays the same.
What problems is the product solving and how is that benefiting you?
It reveals the security issues that I had failed to notice, specially dealing with so many branches and commit histories. I also really like the feature showing which developers most likely know about the exposed secrets.
GitGuardian: Code Scanner for CICD microservices
What do you like best about the product?
GitGuardian is an excellent tool to scan the code after every commit. It makes sure that developers didn't commit any secret value in the code by mistake. We have integrated it with the CI pipelines, and I must say that interation is very easy. We can monitor all the repo and reports from a single dashboard. ONe of the think which I like is, GitGuardian provides integration with almost all the CI tools and microservices tools.
What do you dislike about the product?
Currently, the features are limited to secrets scan, It's not something to dislike, but I would like to see the features like Docker image scan and IaC scans in the future.
What problems is the product solving and how is that benefiting you?
We generally encountered issues like pushing the tokens and secrets to the git repos. GitGuardian is helping by scanning the repos after every commit. This tool is beneficial for beginner developers and DevOps teams.
A great tool for monitoring Git repositories for accidental leaks
What do you like best about the product?
The best feature is automatic scanning and alerts right into your mail.
What do you dislike about the product?
Not really much to dislike in this product as it does what its supposed to do very well, the only issue I faced are false positives.
What problems is the product solving and how is that benefiting you?
GitGuardian has been a great tool in identifying leaked secret keys and passwords which were changed or disabled to prevent any further damages.
Django Sceret Key
What do you like best about the product?
GitGuardian is absolutely great for identifying secrets that may have been left in the code accidentally and which can prove fatal to the organization. However GitGuardian makes your life even easier, it allows you to view where actually the code is in i.e. which file and folder, it lets you provide tags, and finally assign it to someone from your organization to resolve it. Every one of these crucial steps can be done easily and swiftly by using GitGuardian.
What do you dislike about the product?
While writing the things I like about GitGuardian, I didn't write about the severity functionality. That is because all the times it has caught the Django secrets it has not been able to predict or ascertain the severity of that. I'd love it if it could learn about what is severe and what is not. This would definitely help in the short and long term.
What problems is the product solving and how is that benefiting you?
I am a Django developer and had also developed a few android applications. GitGuardian came in clutch when it informed me about an API key that I had left in the Git code. It also saves me every time when it comes to Django secrets as I usually forget to remove them from the Git Code.
We are using GitGuardian to scan Django our repos for credentials that might have been commited
What do you like best about the product?
You get a worry-free commit. Integrated into the SDLC pipeline, it is helpful for internal security, mainly if the credentials are not not to be shared with the public. Better, since we produce open-source software, GitGuardian helps ensure we do not publish sensitive info that somebody can use to target us. The fact that you can restrict the scan of particular folders is very appreciated.
What do you dislike about the product?
It scans even sub repositories that are not ours. If some packages that we use but do not maintain are included in the scan, we get false positives that we wouldn't like to have. Fortunately, that can be easily corrected on the GUI.
What problems is the product solving and how is that benefiting you?
We use GitGuardian to solve the problem of securing our repositories, especially when we have new developers that do not know best practices for not including sensitive information in their commits. GitGuardian has been helpful to remind them that.
Essential security tool for modern developers
What do you like best about the product?
Automated monitoring and checking for accidentally published secrets
What do you dislike about the product?
It would be nice to be able to rank identified issues to facilitate addressing them according to severity.
What problems is the product solving and how is that benefiting you?
Able to easily identify where I may have accidentally leaked secrets in Git repos.
Benefit is that I can address those concerns: delete the secrets from the repo and revoke the keys from the applications that issued them.
Benefit is that I can address those concerns: delete the secrets from the repo and revoke the keys from the applications that issued them.
Protector of credentials!
What do you like best about the product?
This is a great security tool for saving you from various security issues.
What do you dislike about the product?
I have not encountered any issues that have hampered my gitguardian experience.
What problems is the product solving and how is that benefiting you?
Helping me keep security concerns at bay and acting as a great fallback.
showing 71 - 80