GitGuardian Customer Reviews 2026 | Application Security Testing

Write a review temporarily disabled. Our system flagged this request as potentially automated and has disabled form submission for security reasons. If you believe this is a mistake, please contact us. We’ll be happy to help resolve the issue.

GitGuardian

Composite Score

8.7 /10

CX Score

9.1 /10

56 Reviews Write a Review

Claim Software

What is GitGuardian?

Secure your software development lifecycle with enterprise-grade secrets detection. Eliminate blind spots with our automated, battle-tested detection engine.

Company Details

Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

GitGuardian Ratings

Real user data aggregated to summarize the product performance and customer experience.
Download the entire Product Scorecard to access more information on GitGuardian.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

88 Likeliness to Recommend

95 Plan to Renew

75 Satisfaction of Cost Relative to Value

{y}

{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+97 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love GitGuardian?

0% Negative

3% Neutral

97% Positive

Pros

Continually Improving Product
Trustworthy
Saves Time
Respectful

Feature Ratings

Average 78

Interactive Application Security Testing (IAST)

100

Mobile Application Security Testing

Container Security Testing

Public Monitoring

Infra as Code Security

Integrated Development Environment (IDE) plug-in

Honeytoken (intrusion detection)

Software Composition Analysis (SCA)

Secrets Detection

Vulnerability Scanning

False Positive Remediation

Vendor Capability Ratings

Average 79

Ease of IT Administration

Ease of Customization

Business Value Created

Quality of Features

Availability and Quality of Training

Vendor Support

Usability and Intuitiveness

Ease of Data Integration

Ease of Implementation

Breadth of Features

Product Strategy and Rate of Improvement

GitGuardian Reviews

Arghadeep D.

Role: Student Academic
Industry: Technology
Involvement: IT Development, Integration, and Administration

Validated Review

Verified Reviewer

Submitted Mar 2024

A must have while using version-control

Likeliness to Recommend

10 /10

What differentiates GitGuardian from other similar products?

As a rookie programmer, I frequently make silly git pushes revealing my API key. Sometimes, this small mistake can lead to loads of unwanted billing issues due to the revealed key, or it can get permanently deleted by the owner. GitGuardian comes in handy, as it always alerts me about these mistakes.Hence, I always use it, whenever I am working on any project. Another thing about GitGuardian is that it is very easy to use. Just integrate it with GitHub and it does it starts doing its job. The customer support is great as well.

What is your favorite aspect of this product?

The fact that I receive instant notifications of any API expose through my git commits, and also a severity rating of the expose (Critical, High, Low) is my favorite aspect of using GitGuardian. It allows me to prioritize my tasks and enhances my productivity of using GitGuardian.

What do you dislike most about this product?

Some times the alert emails can be too frequent. For non-critical API reveals , the alert emails' frequency can be reduced.

What recommendations would you give to someone considering this product?

I will definitely recommend GitGuardian to anyone dealing with API tokens/keys and working on public repositories. It can save you from undesirable billing issues stemmed from that innocent mistake of unknowingly making a git push while not hiding the API key. This will save both time and money.

Pros

Helps Innovate
Continually Improving Product
Reliable
Trustworthy

Kristijan L.

Role: Information Technology
Industry: Other
Involvement: IT Development, Integration, and Administration

Validated Review

Verified Reviewer

Submitted Mar 2024

The powers of git guardian

Likeliness to Recommend

10 /10

What differentiates GitGuardian from other similar products?

Haven't tried others, I've been using this for 1.5years and am very proud.

What is your favorite aspect of this product?

The fact that I've made mistakes where I've exposed api keys a couple of times, and immidiately got an email by git guardian saying that I've exposed a secret. There is a great UI to work with, where you can say if it's a false positive, if it's resolved, if it's a secret but you want it public etc.

What do you dislike most about this product?

If I am not wrong, git guardian is fulfilling it's purpose. It's supposed to protect me and my secrets. I have no dislikes about it.

What recommendations would you give to someone considering this product?

#1 reason why you would try it, it's gonna happen sometime in the future when you're gonna leak some code and not see it. Then you would regret it. Better safe then sorry.

Pros

Reliable
Performance Enhancing
Enables Productivity
Trustworthy

David V.

Role: Information Technology
Industry: Technology
Involvement: End User of Application

Validated Review

Verified Reviewer

Submitted Sep 2025

Remediation Guidance with GitGuardian

Likeliness to Recommend

8 /10

What differentiates GitGuardian from other similar products?

GitGuardian is a well-known platform in the AST industry with its great features, such as real-time monitoring, a large inventory of specific detectors, workflows for remediation, and false positive repression. It also comes with a secrets analyzer, provides support for scanning various sources, and much more.

What is your favorite aspect of this product?

The Remediation Guidance feature has helped in providing information about the secret, including its location and potential impact. Also, the real-time monitoring feature sends alerts whenever a secret is detected. For me, this is a useful tool that provides efficient services.

What do you dislike most about this product?

Sometimes, false alerts have been observed by the Secret Detection feature, leading to time wastage. These alerts are from environment variables or test credentials that ain't secrets after all.

What recommendations would you give to someone considering this product?

It is a powerful platform for sure, but you must double-check every secret detected to avoid any mishap. Also, maintain a list to avoid repeat alerts on known secrets.

Pros

Helps Innovate
Continually Improving Product
Performance Enhancing
Efficient Service

GitGuardian

What is GitGuardian?

Company Details

Need Assistance?

GitGuardian Ratings

88 Likeliness to Recommend

95 Plan to Renew

75 Satisfaction of Cost Relative to Value

Emotional Footprint Overview

+97 Net Emotional Footprint

How much do users love GitGuardian?

Pros

Feature Ratings Average rating of all product features, some of which may not be shown below

Interactive Application Security Testing (IAST) Analyzes applications while in runtime to identify potential security vulnerabilities, using automated or human interactions.

Mobile Application Security Testing Analyzes mobile apps and/or APIs to identify security vulnerabilities.

Container Security Testing Analyzes application containers to identify security vulnerabilities.

Public Monitoring Monitor your extended attack surface on public GitHub (open-source and personal repositories included) for secrets and sensitive data leaks.

Infra as Code Security Find and fix Infrastructure as Code security misconfigurations before they reach the Cloud (AWS, Azure, GCP).

Integrated Development Environment (IDE) plug-in Provides plug-ins or other means to integrate directly into popular Integrated Development Environments (IDEs).

Honeytoken (intrusion detection) Detect the early signs of intrusion in every corner of the software supply chain (code repositories, CI/CD pipelines, developer endpoints)

Software Composition Analysis (SCA) Analyzes libraries and other components of an application to identify potential security vulnerabilities.

Secrets Detection Detect and remediate exposed secrets (API tokens, database URLs, encryption keys…) at every step of the Software Development Lifecycle.

Vulnerability Scanning Identify security vulnerabilities in applications and middleware.

False Positive Remediation Resolves false positives using either human curators and/or machine-enabled algorithms.

Vendor Capability Ratings Average rating of all vendor capabilities, some of which may not be shown below

Ease of IT Administration This data indicates whether IT personnel will be able to resolve issues and perform configurations efficiently and effectively.

Ease of Customization Don't get bogged down in a difficult customization; use this data to make sure you can easily achieve the functionality you need for your particular situation.

Business Value Created Software needs to create value for employees, customers, partners, and, ultimately, shareholders. This data expresses user satisfaction - or lack thereof - with the product's business value.

Quality of Features Feature quality is just as important as quantity. Use this data to determine if this product will do what you're purchasing it to do, easily, intuitively, reliably, and effectively.

Availability and Quality of Training Effective and readily available training enables users to get the most out of the software you've chosen. Use this section to make sure your vendor's training programs and materials measure up.

Vendor Support The importance of vendor support will vary for each organization depending on internal capabilities, but there will always be issues that only the vendor can resolve.

Usability and Intuitiveness End user learning curves cost the organization money. Pay attention to your end users' technical ability to determine how important UX is in your purchase.

Ease of Data Integration Use this data to determine whether the product will cause headaches or make data integration easy.

Ease of Implementation Successfully implementing new software is necessary to realize its full value and promote end user adoption. This data indicates whether or not the product is easy to implement.

Breadth of Features Users prefer feature rich software that enables them to perform diverse series of tasks. This data expresses user satisfaction with the product's breadth of features.

Product Strategy and Rate of Improvement Vendors who don't stay on top of emerging needs and trends won't enable you to meet your business goals. Use this data to separate innovators from imposters.

GitGuardian Reviews

Arghadeep D.

A must have while using version-control

Likeliness to Recommend

Pros

Kristijan L.

The powers of git guardian

Likeliness to Recommend

Pros

David V.

Remediation Guidance with GitGuardian

Likeliness to Recommend

Pros

Most Popular GitGuardian Comparisons

GitLab

SonarQube

OpenText Dynamic Application Security Testing

Black Duck SCA

OpenText Static Application Security Testing

Veracode Static Analysis

Feature Ratings

Interactive Application Security Testing (IAST)

Mobile Application Security Testing

Container Security Testing

Public Monitoring

Infra as Code Security

Integrated Development Environment (IDE) plug-in

Honeytoken (intrusion detection)

Software Composition Analysis (SCA)

Secrets Detection

Vulnerability Scanning

False Positive Remediation

Vendor Capability Ratings

Ease of IT Administration

Ease of Customization

Business Value Created

Quality of Features

Availability and Quality of Training

Vendor Support

Usability and Intuitiveness

Ease of Data Integration

Ease of Implementation

Breadth of Features

Product Strategy and Rate of Improvement