Skip to main content

Secrets Managers integrations

GitGuardian integrates with Secret Managers through ggscout, enabling you to synchronize secrets incidents with secrets stored in your Secret Managers. Connect your Secret Managers using the guidelines provided in the Secrets Managers integrations page from your GitGuardian platform.

No secrets get out of your environment!

Secrets values will never leave your environment in clear!

Secrets values are hashed using the HMSL hashing algorithm before they are sent to your GitGuardian workspace. Other non-sensitive metadata like the secrets names, paths in the vault, creation date, lease time, etc... are also collected to help you in the remediation process.

By leveraging insights and metadata from vaulted secrets in your GitGuardian dashboard, you can efficiently address various use cases.

Ease incident prioritization

Segregating vaulted and unvaulted secrets helps prioritize your remediation efforts:

  • Identify secrets incidents by Secret Manager instance. Based on your Secrets Management practices, this enables you to:
    • Pinpoint the teams responsible for the leak and remediation.
    • Identify critical secret incidents that should be prioritized.
  • Have full confidence that an incident is a true positive when it matches a secret stored in your Secret Managers.
  • Gain a clearer understanding of the remediation effort, depending on whether secrets are already vaulted.

Secrets Managers Tag

Accelerate incident remediation

Vaulted secrets insights and metadata will streamline your incident remediation with developers:

  • Bootstrap remediation by inserting unvaulted secrets in your Secrets Managers.
  • Shorten remediation workflows by identifying vaulted secrets early.
  • Facilitate and accelerate remediation for vaulted secrets by quickly accessing the secret’s path within the Secret Manager.

Push secret to vault

Push to vault form

Identify secrets management bad practices

ggscout matches secrets incidents with secrets based on their hashed values. This process provides valuable insights into potential Secrets Management hygiene issues:

  • Identify duplicated secrets across one or more Secret Manager instances.
  • Identify weak secrets or secrets templates.

Duplicated Secrets

In both cases these secrets should be reviewed and potentially updated.

Assist with Secrets Managers consolidation strategies

As organizations often have multiple Secret Managers, rationalizing them can be complex. The planning, execution, and tracking phases typically involve the following high-level process. Vault Migration

By identifying and maintaining secrets location in a multi-vault environment GitGuardian saves you countless hours in defining, executing and tracking your consolidation program:

  • Use filters to plan and prioritize your consolidation strategy.
  • Create Saved Views to track your program over time.
  • Identify and purge migrated secrets from their original location.
Last updated on

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status