Gitleaks

Gitleaks is an open-source tool designed to scan git repositories, files, and standard input for sensitive information such as passwords, API keys, and tokens. It uses regular expressions and entropy analysis to detect potential secrets within the codebase. Gitleaks supports various installation methods including Homebrew, Docker, and Go. It can be integrated into the development workflow as a pre-commit hook or a GitHub Action. The tool offers configurable rules, reporting formats (JSON, CSV, JUnit, SARIF, template), and ignore paths to customize the scanning process. Gitleaks aims to enhance security by identifying and preventing the accidental exposure of sensitive data in code repositories, contributing to a more secure software development lifecycle.

About Gitleaks

Core Capabilities

Main Tasks

Identifying Sensitive Data

Implementing Pre-commit Hooks

Defining Ignore Paths

Key Features

Custom Rule Definition

Baseline Ignoring

Multiple Report Formats

Archive Scanning

Redaction

Use Cases

Scanning a git repository before pushing changes

Automated scanning of a GitHub repository using GitHub Actions

Scanning files in a CI/CD pipeline

Periodic scanning of existing git repositories

Scanning standard input for secrets

Quick Start Guide

Pros

Cons

Frequently Asked Questions

Reviews & Ratings

AI Verdict

Write a Review

Feedback & Questions

User Comments

Free

Specs

Core Tasks

Data Interface

Analytics

Categories

Alternative Tools