Skip to main content

Investigate and remediate your first open incident

What is a secret incident? What are its implications?

Secret incidents are open issues that need your attention to be resolved. They are created thanks to our secrets detection engine that scans your sources code for hardcoded secrets to display them in your dashboard.

Leaving a secret in plain text in source control represents a threat for the security of the resources that are protected by that secret. To learn more about why hardcoded secrets are a vulnerability that needs your Application or Product Security teams' attention, read the related paragraph in our Core Concepts section of Secrets Detection.

What are the occurrences of an incident?

The same secret can be seen multiple times in your VCS. They are referred to as occurrences.
GitGuardian streamlines the remediation process by automatically grouping multiple occurrences of the same secret into a single secret incident.

Thus, an occurrence of a secret incident is uniquely identified by the combination of the following parameters:

  • the source (for instance: a GitHub repository or a GitLab project) impacted by the secret occurrence,
  • the commit in which we detected the secret occurrence,
  • the commit file containing the secret occurrence,
  • the line within the commit file where the secret occurred.

Alerts are sent only when a new incident is created or reopened because of a regression. A new occurrence attached to an already-existing open secret incident won't raise any alerts.

GitGuardian sets a maximum limit of 1,000 occurrences for a single secret incident (this does not apply to the self-hosted platform).