https://github.com/gitguardian/gitguardian-vscode

Stop leaks. Safeguard your secrets with GitGuardian. GitGuardian actively prevents accidental exposure of sensitive information in your code, allowing you to code confidently and maintain the integrity of your data.
https://github.com/gitguardian/gitguardian-vscode

appsec credentials devsecops scanning secrets secrets-detection secrets-engine secrets-management secrets-scan security vscode vscode-extension

Last synced: about 1 month ago
JSON representation

Stop leaks. Safeguard your secrets with GitGuardian. GitGuardian actively prevents accidental exposure of sensitive information in your code, allowing you to code confidently and maintain the integrity of your data.

• Host: GitHub
• URL: https://github.com/gitguardian/gitguardian-vscode
• Owner: GitGuardian
• License: mit
• Created: 2024-08-22T11:50:29.000Z (about 1 year ago)
• Default Branch: main
• Last Pushed: 2025-03-11T15:15:51.000Z (7 months ago)
• Last Synced: 2025-03-11T15:38:34.674Z (7 months ago)
• Topics: appsec, credentials, devsecops, scanning, secrets, secrets-detection, secrets-engine, secrets-management, secrets-scan, security, vscode, vscode-extension
• Language: TypeScript
• Homepage: https://marketplace.visualstudio.com/items?itemName=gitguardian-secret-security.gitguardian
• Size: 146 MB
• Stars: 26
• Watchers: 9
• Forks: 1
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • Changelog: CHANGELOG.md
  • Contributing: CONTRIBUTING.MD
  • License: LICENSE
  • Codeowners: .github/CODEOWNERS
  • Security: SECURITY.MD
  • Support: SUPPORT.md

Awesome Lists containing this project

README

          
# GitGuardian for VS Code

Detect secrets in real time and retroactively across extensive sources, with no limit to your team’s scale. GitGuardian grows with you, securing both new and legacy codebases with unmatched precision.

Whether you’re a solo developer or part of a team, GitGuardian scales with you, catching secrets in every language, every repo, and every branch.

![Incident highlighted](https://raw.githubusercontent.com/GitGuardian/gitguardian-vscode/main/doc/incident_highlighted_dark.png)

### Key Features

- **Automatic Scanning**: Each time you save a file, GitGuardian scans for over 400+ types of secrets using the bundled GitGuardian CLI (`ggshield`).

- **Secret Detection & Alerts**: Detected secrets are highlighted in your code and displayed as warnings in the `Problems` panel.

- **Easy Ignore Option**: Ignore secrets quickly with the command `GitGuardian: Ignore Last Found Incidents` or directly via the UI.

### Get Started in 3 Steps

1. **Authenticate**: Link your IDE to your GitGuardian account with one click. For on-premise users, enter your custom URL and API key in settings.

2. **Scan on Save**: Save a file to trigger an automatic scan. Incidents show up instantly in your file and Problems panel.

3. **Remediate with Guidance**: View remediation tips right in the extension’s side panel. Security teams can customize messages for precise guidance.

### Additional Features

- **Ignore Secrets**: After a scan, hover over the identified secret and select "GitGuardian: Ignore Secret" to add it to `.gitguardian.yaml`.

- **Quota Tracking**: Run "GitGuardian: Show Quota" to monitor API call usage. Personal accounts include up to 10,000 monthly API calls.

    - **Check API Quota**: Stay aware of usage by running "GitGuardian: Show Quota."

### Support & Contributions

- **Report Issues**: [Submit bug reports](https://github.com/GitGuardian/gitguardian-vscode/issues/new/choose).

- **Feature Requests & Ideas**: [Join discussions](https://github.com/GitGuardian/gitguardian-vscode/discussions).

- **Security Reports**: Use our [Vulnerability Disclosure Portal](https://vdp.gitguardian.com).

### Release Notes & License

- **Updates**: See the [Changelog](https://github.com/GitGuardian/gitguardian-vscode/blob/main/CHANGELOG.md).

- **License**: GitGuardian CLI (`ggshield`) and this extension are MIT licensed.