Challenges
Solution
Results
What is most valuable?
Key quote
What’s next
What is our primary use case?
Our current use cases for GitGuardian Platform involve monitoring external and internal GitHub and GitLab, Bitbucket, and other code repositories that it supports for secrets.
How has it helped my organization?
What is most valuable?
The newest addition that we appreciate about GitGuardian Platform is the ability to create a custom detector, which we built and worked with the team, and that works very effectively.
What needs improvement?
GitGuardian Platform does what it is designed to do, but it still generates many false positives.
For how long have I used the solution?
I have been using GitGuardian Platform for 5 years at the company, and my team has been using it for 3 years.
What do I think about the stability of the solution?
There has not been any instability with GitGuardian Platform; it performs reliably.
What do I think about the scalability of the solution?
Currently, what GitGuardian Platform is doing works effectively. It is quick and meets our needs. If we added more, I do not think that would really impact performance, so the scalability in that aspect is fine. I know they are trying to branch out and look for secrets in other types of tools, but I am not sure if we are going to use them for that or if that would impact performance or stability either.
How are customer service and support?
I have contacted technical support previously, but we usually work through our customer representative directly, and they create the tickets for us.
Which solution did I use previously and why did I switch?
How was the initial setup?
We have one employee that primarily works on the deployment and configuration of GitGuardian Platform, and that took approximately a couple of weeks working directly with them. After that, she spends about an hour in there a week, so it requires minimal effort on our side.
What about the implementation team?
What was our ROI?
What's my experience with pricing, setup cost, and licensing?
Which other solutions did I evaluate?
I have not used any alternatives to GitGuardian Platform in this specific scope, as I have not found one that fully integrates into as many different code repositories. We have used a couple of tool-specific ones, but GitGuardian Platform is the only one we have used that works across multiple platforms.
What other advice do I have?
We purchased GitGuardian Platform for a compliance checkbox because we needed to monitor secrets in our code repositories. We saw benefits immediately after implementation, but the reason my team took it over after a couple of years is that the original team did not really go beyond a compliance checkbox. We started seeing benefits in year 3 as we built out a workflow to contact the developers who committed code with secrets and get them to review and approve or revoke the process.
.svg)
