https://appsec.fyi/tools.html#gitleaks Curated gitleaks resources from appsec.fyi en-us Sun, 07 Jun 2026 04:05:35 +0000 carl@chs.us (Carl Sampson) https://www.buildmvpfast.com/blog/github-secret-scanning-pattern-updates-devops-2026 https://www.buildmvpfast.com/blog/github-secret-scanning-pattern-updates-devops-2026 Library for GitHub Secret Protection offers enhanced detection of leaked secrets with 28 new patterns across 15 providers, expanded push protection for 39 token types, and AI-powered generic password detection via Copilot. Available to GitHub Team plan customers at $19 per month per active committer, it includes validity checks and improved API visibility. This solution aims to prevent credential-related breaches, which cost an average of $4.88 million, by blocking pushes of sensitive information like Supabase service keys and Vercel API tokens before they reach repositories. gitleaks beginner Wed, 22 Apr 2026 12:52:56 +0000 https://rafter.so/blog/secrets/pre-commit-hooks-secret-detection https://rafter.so/blog/secrets/pre-commit-hooks-secret-detection Library for implementing pre-commit hooks to prevent secrets from entering Git history. It details the setup process for tools like gitleaks, detect-secrets, and TruffleHog, offering solutions for immediate detection and blocking of credential leaks. The library emphasizes catching secrets at the cheapest point in the lifecycle, preventing the need for costly history rewrites and incident response by integrating these tools seamlessly into the Git commit workflow. gitleaks intermediate Sun, 19 Apr 2026 02:37:09 +0000 https://resources.github.com/enterprise/understanding-secret-leak-exposure/ https://resources.github.com/enterprise/understanding-secret-leak-exposure/ Library for assessing an organization's exposure to secret leaks, highlighting that over 39 million secrets were detected on GitHub in 2024 alone. This resource details how secrets like API keys and passwords are leaked through repository commits or misconfigurations, referencing the $4.88 million average cost of credential compromise breaches and the 2022 LastPass breach. It provides methods for quantifying risk, including inventory audits and benchmarking against OWASP ASVS and NIST guidelines, and mentions GitHub's secret risk assessment tool for enterprise customers. gitleaks beginner Sun, 19 Apr 2026 02:22:23 +0000 https://securityledger.com/2026/03/exposed-developer-secrets-surge-ai-drives-34-increase-in-2025/ https://securityledger.com/2026/03/exposed-developer-secrets-surge-ai-drives-34-increase-in-2025/ Report detailing a 34% surge in exposed developer secrets during 2025, fueled by AI-assisted coding and expanded use of tools like Claude Code. GitGuardian's analysis highlights significant increases in leaked AI service credentials, including DeepSeek API keys, and identifies internal repositories as a six-fold greater risk. The report also notes that 28% of exposures occur outside code in platforms like Slack and Jira, with 64% of discovered secrets remaining unrevoked. gitleaks news Sun, 19 Apr 2026 02:22:23 +0000 https://github.blog/security/application-security/next-evolution-github-advanced-security/ https://github.blog/security/application-security/next-evolution-github-advanced-security/ Library for GitHub Advanced Security, featuring Secret Protection and Code Security, addresses the pervasive issue of exposed secrets, which led to 39 million leaks on GitHub in 2024. It emphasizes built-in push protection for public repositories and introduces affordable standalone products and a free point-in-time scan for organizations to identify and manage secret exposures effectively, partnering with vendors like AWS and Google Cloud Platform to enhance detection accuracy. gitleaks news Sun, 19 Apr 2026 02:22:22 +0000 https://dev.to/sirlawdin/secret-scanning-in-ci-pipelines-using-gitleaks-and-pre-commit-hook-1e3f https://dev.to/sirlawdin/secret-scanning-in-ci-pipelines-using-gitleaks-and-pre-commit-hook-1e3f Tool for integrating Gitleaks into GitLab CI pipelines for secret scanning. It details setting up a CI job to run Gitleaks against the OWASP Juice Shop application, demonstrating how to detect and prevent secret leaks like API keys, usernames, and secret keys from being committed. The entry also mentions the use of Git hooks as a pre-commit security measure. gitleaks intermediate Sat, 11 Apr 2026 16:48:23 +0000 https://www.d4b.dev/blog/2026-02-01-gitleaks-pre-commit-hook/ https://www.d4b.dev/blog/2026-02-01-gitleaks-pre-commit-hook/ Library for a local Gitleaks pre-commit hook that prevents accidental secrets from entering Git history. It utilizes files within `.git/` for a fast, easily removable safety net, supporting custom configurations via `.gitleaks.toml` and optional team-wide enforcement with Lefthook or GitHub Actions. gitleaks intermediate Sat, 11 Apr 2026 16:48:22 +0000 https://www.jit.io/resources/appsec-tools/git-secrets-scanners-key-features-and-top-tools- https://www.jit.io/resources/appsec-tools/git-secrets-scanners-key-features-and-top-tools- Library of eight Git secrets scanners, including Jit, Gitleaks, GitGuardian, HawkScan, AWS Git Secrets Scanner, Spectral, Trufflehog, and GitHub Secret Scanning, designed to detect and neutralize exposed sensitive data like API keys and credentials within code repositories. These tools employ pattern-based and ML detection, custom rules, historical and pre-commit scanning, CI/CD integration, and remediation guidance to prevent data breaches and unauthorized access by shifting security left in the development lifecycle. gitleaks beginner Fri, 10 Apr 2026 01:52:08 +0000 https://www.jit.io/resources/appsec-tools/trufflehog-vs-gitleaks-a-detailed-comparison-of-secret-scanning-tools https://www.jit.io/resources/appsec-tools/trufflehog-vs-gitleaks-a-detailed-comparison-of-secret-scanning-tools Library comparing TruffleHog and Gitleaks, popular secret scanning tools that identify hardcoded secrets like API keys and tokens within codebases and other environments. TruffleHog offers extensive scanning across S3 buckets and Docker images with advanced verification, while Gitleaks provides a lightweight, fast, and user-friendly experience focused on code repositories, excelling in CI environments. Both integrate into the SDLC to proactively detect and rectify leaked credentials, preventing unauthorized access and security breaches. gitleaks intermediate Fri, 03 Apr 2026 15:50:55 +0000 https://github.com/gitleaks/gitleaks https://github.com/gitleaks/gitleaks Tool for detecting secrets like passwords, API keys, and tokens in git repos, files, and via stdin. Gitleaks supports scanning via `git`, `dir`, and `stdin` commands, and can be integrated as a pre-commit hook or GitHub action. It allows for baseline scanning to ignore old findings and custom rule configuration. gitleaks beginner Fri, 03 Apr 2026 15:50:51 +0000