Skip to main content


The GitGuardian CLI, ggshield, provides security guardrails at every stage of your Software Development Lifecycle (SDLC).
Find and fix more than 350+ types of hardcoded secrets and 70+ Infrastructure-as-Code security misconfigurations.


Core commands#


Since v1.12.0, the ggshield scan and ggshield ignore commands are deprecated, use ggshield secret scan and ggshield secret ignore instead.

Additional commands#


  • -h, --help: show this message and exit
  • --allow-self-signed: ignore ssl verification
  • -c, --config-path <FILE>: set a custom config file. Ignores local and global config files
  • -v, --verbose: verbose display mode
  • --version: show the version
  • --check-for-updates / --no-check-for-updates: After executing commands, check or not if a new version of ggshield is available.
  • --debug: show debug information.