Skip to main content

Security

Beta

The GitGuardian MCP Server is currently in beta. Features and behavior may change as we iterate based on user feedback.

Most tools operate with read-only permissions by design, limiting the agent's capabilities to safe, non-destructive operations such as scanning, listing incidents, and browsing detectors. A few tools — such as honeytoken generation — perform write operations but remain scoped to low-risk actions.

Secret values are never sent to the AI model — scanning is performed server-side via the GitGuardian API.

Last updated on

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status