GitGuardian Pricing

Secrets Detection tightly integrates with repositories that are owned by your company, either public (under your GitHub Organization, if you have any) or private repositories. These repositories are part of your Software Development Life Cycle.

‍Public Monitoring is more of a Data Loss Prevention or Threat Intelligence solution. It monitors the whole GitHub public activity, using many different rules to pinpoint activity that is linked with your company and that might be a threat. This activity mostly occurs on repositories that you don’t control and you don’t even know exist, such as your developers’ personal repositories.

NHI Governance gives you one place to see all your secrets across vaults and other sources, understand who uses them, and automate their lifecycle management. It helps you find security gaps and improve your overall NHI security.

GitGuardian Platform licenses can be acquired via the AWS Marketplace. As an AWS ISV Accelerate partner, we offer seamless integration and streamlined procurement. Please visit https://aws.amazon.com/marketplace to learn more.

If you are a large organization looking to acquire several hundred licenses, you can also request a private offer from the GitGuardian team. Please contact sales@gitguardian.com.

These two products are complementary and available in the platform. They come in the form of two different dashboards. GitGuardian for Public Monitoring is typically used by Threat Response, while Secrets Detection is typically used by Application Security.

This greatly depends however, on the way responsibilities are split between your teams. In any case, the look and feel of both GitGuardian dashboards are very similar, so that your team members aren’t lost when they use both products!

GitGuardian NHI Governance and Secrets Detection gives you a complete NHI security picture. Governance finds all your secrets, and Detection pinpoints leaks. This combo boosts accuracy, speeds up incident response by showing you exactly where secrets live, and helps prevent future leaks by guiding developers. Together, they make secrets management faster, safer, and more efficient.

For Public Monitoring: any publicly active developer who has made at least one public commit somewhere on GitHub.

‍For Secrets Detection and NHI Governance: any active contributor to a project you are securing with GitGuardian who has made at least one commit in the last 90 days.

For Public Monitoring, the best option that you have is to reach out to us. We use many different rules to identify public activity that is linked with your company. It just takes one email to our support to get your company’s public activity metrics based on our historical data.

For Secrets Detection and NHI Governance, a developer is an active contributor to a project you are securing with GitGuardian who has made at least one commit in the last 90 days. This applies to both Secrets Detection and NHI Governance, as NHI Governance is part of the unified GitGuardian Platform and is priced per developer seat.

Our GitGuardian platform is free for repositories hosted under your GitHub Organization.

Our Public Monitoring product is charged based on your numbers of publicly active developers. Contributors to your Open Source projects aren’t always members of your development teams. We count these contributors only if they are actual employees. In such a case, we monitor these contributors wherever they commit on public GitHub, especially on personal and third party repositories.

Quota usage is based on requests and not on content amount or size. As an example, the scan of a single file, via single scan endpoint, and the scan of a commit involving multiple files, via multiple scan endpoint, both use 1 API call per request.

The quota is set on a rolling month basis (and not on calendar month). By default, we grant 10,000 calls/month on our free plans and 1M calls/month for our customers on the business plan. Those quotas can be fine tuned upon request.

We do! Please contact us.