An Intellyx Brain Candy Brief
GitGuardian automatically scans Git repos for secrets (passwords, API keys, database URLs, etc.) and then alerts both developers and security personnel to their presence, enabling them to remove them from the code and update the corresponding secrets.
GitGuardian works in real-time. It is able to avoid most false positives, and it can group multiple instances of the same issue together for simplified mitigation.
GitGuardian offers two versions of its product: a public freemium version that continually scans public GitHub repos, and a private version for internal Git deployments.
The company provides customizable remediation guidelines so customers can configure their own key rotation policies and other actions as required.
GitGuardian is thus suitable for the more restrictive policies of regulated enterprises and government organizations as well as companies with less stringent requirements.
Copyright © Intellyx LLC. Intellyx publishes the Cloud-Native Computing poster, advises companies on their digital transformation initiatives, and helps vendors communicate their agility stories. As of the time of writing, none of the organizations mentioned in this article is an Intellyx customer. To be considered for a Brain Candy article, email us at pr@intellyx.com.