Version	Release Date
2025.6.0	June 20, 2025

System Requirements Update​

Ensure your infrastructure meets the latest requirements for optimal performance and security:

Helm & Upgrade Considerations​

To ensure compatibility, please review Helm values updates from the previous version. Air gap deployment? Find all the images and tag names in the air gap install page.

Feature highlights​

• Secure API access to secret values — retrieve secret values via API endpoint for automation workflows. Learn more
• Microsoft Teams secret detection — scan Teams messages for hardcoded secrets with real-time and historical scanning. Learn more
• Jira and Confluence Cloud historical scanning — detect secrets leaked in the past across Jira and Confluence Cloud. Learn more
• Container Registries secret detection — detect hardcoded secrets in Azure, Google, JFrog, and DockerHub registries. Learn more
• Self-Hosted: Export GitGuardian logs to Splunk, Loki, Elasticsearch, Kafka, and Datadog for centralized monitoring. Learn more

Secrets Detection Engine​

• v2.139 — 1 new detector (GitLab Feature Flags Client Token), 6 improved (AMQP, Confluent, Generic High Entropy, Artifactory, Azure Storage), 1 engine enhancement.
• v2.140 — 12 new detectors (Laravel, GitLab tokens, Kubernetes JWT, Brave Search, Dify, Firecrawl, Ubidots, Vapi, Llama Cloud), 4 improved, 7 new checkers, 2 engine enhancements.

Enhancements​

• Teams API endpoint optimization. See SaaS release: Jun 19.
• Self-Hosted:
  • Improved ML Secret Engine Docker image permissions to support running with custom user and group IDs for better Kubernetes security contexts.
  • Improved Docker image permissions to support running with custom user and group IDs for better Kubernetes security contexts.
  • Improved handling of failed index creation migrations to allow safe re-execution of database updates.
  • Added capability to specify constraint of only one worker per node in Kubernetes deployments to optimize resource allocation. Learn more about scaling.

Fixes​

• Email alerts to inactive members, custom tags pagination, GitLab parent group permissions, secret analyzer validity checking. See SaaS release: Jun 19.
• Self-Hosted:
  • Corrected an issue preventing Self-Hosted customers from adding or editing custom severity rule sets.
  • Fixed an issue with ACL limitations on GCP and Azure cloud platforms where Redis deployments disable the ACL command, causing pre-deployment checks for the FLUSHDB command to fail. The system now gracefully handles scenarios where ACL commands are unavailable.

Version	Release Date
2025.1.0	January 20, 2025
2025.1.1	January 23, 20255

System Requirements Update​

Ensure your infrastructure meets the latest requirements for optimal performance and security:

Helm & Upgrade Considerations​

To ensure compatibility, please review Helm values updates from the previous version. Air gap deployment? Find all the images and tag names in the air gap install page.

⚠️ Important: This is a required release and cannot be skipped.

Feature highlights​

• Microsoft Teams security alerts — real-time GitGuardian alerts in Microsoft Teams with instant notifications. Learn more
• Jira Data Center auto-tracking — auto-create Jira issues, sync custom fields, and auto-resolve incidents. Learn more
• False Positive Remover v1 — internal ML model that halves false positives for Self-Hosted deployments. Learn more
• Slack secret scanning — scan full history of public and private Slack channels to detect leaked secrets. Learn more
• Remediation tracking — enhanced workflow with precise location details and real-time tracking of remediation progress. Learn more. ⚠️ You can adjust the scan rate limit for the file tracking engine via the scan_after_push_force_rate_limit preference on the Preferences page. Historical scans are recommended to ensure incidents requiring fixes are available in the dashboard.
• SCIM user deprovisioning — automatic user deprovisioning when users are removed from your IdP. Learn more

Secrets Detection Engine​

• v2.128 — 4 new detectors (Jenkins API, chpasswd, Nessus Agent, Statsig Server), 1 improved (FTP).
• v2.129 — 1 new detector (GitLab OAuth), 4 improved (Base64 High Entropy, GitGuardian Test Token, MSSQL, Zendesk).

Enhancements​

• Redesigned navigation menu, automatic repository monitoring control. See SaaS release: Dec 12.
• Jira Data Center user picker custom fields. See SaaS release: Jan 28.
• Self-Hosted:
  • GitHub integration: Improved real-time event handling for >100 commits and enhanced large patch processing.
  • Configurable commit length scanning via repo_scan_max_commit_length preference. Learn more.
  • ReplicatedSDK image now pulled from Replicated registry. Learn more.
  • Improved error messages for partially initialized databases.
  • Introduced Periodic Tasks page to adjust schedules and fine-tune execution.
  • Merged secrets_checks queue with background validity checks queue for optimized performance.

Fixes​

• Check runs messages, validity check tooltip, Jira issue tracking line feeds. See SaaS release: Dec 23.
• GitLab large instance support. See SaaS release: Jan 28.
• User deletion with saved views. See SaaS release: Jan 13.
• Self-Hosted:
  • Corrected sorting and filters on Worker Tasks page in the Admin area for improved usability.

Hotfixes​

2025.1.1​

  Release Date: January 23, 2025

Fixes​

• Self-Hosted:
  • Fixed GitGuardian dashboard 404 error in embedded cluster installations (excluding legacy Kurl clusters).
  • Fixed embedded cluster deployment with custom CA.
  • Fixed 404 error on /metrics endpoint for applicative metrics (Helm).
  • Fixed Replicated RBAC resources created despite rbac.enabled: false in Helm values.