Code security solutions

Loved by developers, trusted by security

GitGuardian Labs projects bring our latest innovations in code security to your fingertips

Why GitGuardian Labs

The adoption of new frameworks, and architectures, the rise of the DevOps discipline with automation, infrastructure-as-code, and CI/CD systems, and the over-reliance on open-source and 3rd-party services are all the hallmarks of a new era in software development and delivery.

By now, the benefits are known to everyone in the industry: a faster time-to-market, increased developer productivity (and happiness), and overall more satisfied customers. What is less understood, however, is the reshaping of organizations’ attack surfaces and the creation of new opportunities and avenues for attackers.

GitGuardian Labs' mission is to explore the threats of today and tomorrow in the areas of code and software supply chain security and offer easy-to-use solutions for developers and security professionals alike. We’re constantly exploring new vulnerabilities and adapting ourselves to an ever-changing threat landscape – where the SDLC is becoming the new Eldorado for attackers.

Eric Fourrier
CTO & cofounder at GitGuardian

Our projects

So far, 4 projects have hatched in the owl’s nest: The Good Samaritan, ggshield, HasMyCodeLeaked, and ggcanary. More projects are coming soon!

Making GitHub a safer space for every developer

Since late 2017, we have been watching over more than 40 million developers’ shoulders. Whenever they leaked a secret on public GitHub repositories, we made it our duty to notify them on time so they can take action.

In 2021, we found 6 million occurrences of secrets hiding in more than a billion public commits and alerted more than a million developers. See what they have to say about us.

Learn more

Finding hardcoded secrets hidden deep in Docker images

Secrets are found in nearly every place: source code, build logs, infra-as-code, etc. Docker images are no exception, we have scanned more than 2,000 images on Docker Hub and found exposed secrets in about 7% of the total! That’s when we knew we had to release our Docker image scanning utility to the public.

With ggshield, the GitGuardian CLI, developers and security engineers can now run deep scans on any Docker image's creation process (Dockerfile and build arguments) as well as its layers' filesystem.

Start scanning

Uncovering source code leaks with your own private detective on GitHub

In 2020, GitHub received more than 2,000 DMCA takedown requests to remove 36,000 infringing repositories. And that’s just about the tip of the iceberg – most source code leaks go unnoticed!

To solve this, we have created HasMyCodeLeaked. A free tool that helps organizations and creators fingerprint their proprietary code, search for any matches across billions of files on GitHub and generate a report to identify repositories at risk.

Try it for free

Detecting compromised DevOps environments with AWS honey tokens

Developer and DevOps environments are becoming attackers' favorite targets: version control systems, CI/CD tools, ticketing, and messaging systems such as Jira or Slack all serve as great entry points for further lateral movement.

With ggcanary, security teams can deploy AWS canary tokens at scale, luring their attackers into revealing themselves and detecting intrusion as soon as it happens.

Visit GitHub repo

Want to keep secrets out of your git repositories?

Take a look at GitGuardian Internal Monitoring

Go to website