~ / directory / gitguardian
GI
Mixed · Identity & AppSec · reviewed 2026-04

GitGuardian

Real-time secrets detection.

Visit www.gitguardian.com
01

What it does

A real-time secrets detection platform that scans code repositories, CI/CD pipelines, and collaboration tools for exposed credentials. Detects API keys, tokens, certificates, and other secrets before they become security incidents.

02

Security relevance

AI deployments multiply the secrets attack surface — API keys for LLM providers, vector database credentials, model registry tokens, and service account keys all need protection. GitGuardian catches these before they're committed to repositories or shared in CI/CD logs.

03

When to use it

Deploy across all repositories that contain AI application code. SaaS with CI/CD integration requiring repo connections, policy configuration, and alert tuning. Critical infrastructure for any development team working with AI APIs and services.

04

OWASP coverage

Risks addressed — mapped to both OWASP Top 10 standards. 1 in LLM, 1 in Agentic.

LLM Top 10 · 2025 · 1/10 covered
01
02
03
04
05
06
07
08
09
10
LLM06 · Excessive Agency
Agentic Top 10 · 2026 · 1/10 covered
01
02
03
04
05
06
07
08
09
10
ASI04 · Agentic Supply Chain Vulnerabilities
05

The raw record

What Yuntona stores. Single source of truth — fork it on GitHub.

name: GitGuardian
slug: gitguardian
type: Mixed
category: Identity & AppSec
url: https://www.gitguardian.com

reviewed:   2026-04
added:      2026-04
updated:    2026-04

risks:
  llm:  [LLM06]
  asi:  [ASI04]

complexity:    Guided Setup
pricing:       —
audience:      Blue Team
lifecycle:     [develop]

tags: [DevSecOps, DLP, Secrets]