October 2024
Welcome to the October 2024 release notes! This month’s update introduces powerful new features, integrations, and enhancements across the GitGuardian platform, with a focus on secrets detection, analytics, and streamlined management.
Highlights include:
- ServiceNow Integration for seamless issue tracking
- Expanded Secrets Detection Engine with new detectors and updates
- VSCode Extension launch for enhanced in-IDE security
- Enhanced tools for Historical Scan Management and User Management
Read on for a detailed breakdown of each new feature and improvement.
October 28, 2024
Platform
- ServiceNow Integration: A new issue tracking integration to create ServiceNow issues from GitGuardian incidents. This feature includes:
- Ability to create a ServiceNow issue directly from a GitGuardian incident.
- Automated creation of ServiceNow issues for new GitGuardian incidents.
- Auto-resolve setting to mark incidents as resolved in GitGuardian when closed in ServiceNow.
- Learn more about ServiceNow Integration
October 21, 2024
Secrets Detection
- Secrets Detection Engine Upgrade to 2.124.1:
- New detector:
- BitBucket App Password: Detects BitBucket App Passwords used for secure access to repositories. Learn more
- Modified detectors:
- Generic CLI Option Secret: Detects secrets in CLI options. Learn more
- MongoDB CLI Credentials: Detects MongoDB credentials in CLI access. Learn more
- MySQL CLI Credentials: Identifies MySQL credentials in command-line access. Learn more
- PostgreSQL CLI Credentials: Detects PostgreSQL CLI credentials. Learn more
- Redis CLI Password: Detects Redis CLI passwords. Learn more
- New detector:
Platform
-
Check Runs: GitHub’s custom properties can now override GitGuardian’s global configuration for check runs, allowing repository and organization-specific customizations. Learn more
-
Historical Scan:
- New 'Bulk Historical Scans Management' page with filtering, tracking, and insights on scans.
- New source filter for instance management (e.g., production/staging).
- New 'Bulk Historical Scans Management' page with filtering, tracking, and insights on scans.
-
Members: Added the option to deactivate members instead of deleting them. Learn more
Fixes
- Validity Check: Improved GitLab token validation to prevent incorrect secret validity markings.
- Perimeter: Fixed inaccurate historical scanning statistics on the perimeter page side panel.
October 17, 2024
Secrets Detection
- Filepath Exclusion: File path exclusions can now be applied to specific repositories, reducing irrelevant incidents and improving incident management. Learn more
October 14, 2024
Platform
- Analytics Charts: A new page in the Analytics menu for business users to visualize and understand incidents over time. Useful for tracking progress, measuring performance, and making data-driven decisions. Learn more
October 7, 2024
Secrets Detection
- Secrets Detection Engine Upgrade to 2.122:
- New Detectors:
- Atlassian Access Token: Detects tokens for accessing Atlassian services. Learn more
- Bitbucket Access Token: Identifies Bitbucket tokens for API interactions. Learn more
- Mistral AI API Key: Detects API keys for Mistral AI. Learn more
- New Detectors:
- VSCode Extension: GitGuardian CLI (ggshield) is now available as a VS Code extension, allowing automatic file scans on save with highlighted secrets and remediation messages in the IDE. Learn more
