Opsera, the Continuous Orchestration platform for DevOps, today announced the availability of GitCustodian. This new solution scans vulnerable data found in source code repositories and alerts security and DevOps teams to prevent sensitive data from leaking into production.
Once vulnerabilities are identified, GitCustodian automates remediation processes for any discovered secrets or other sensitive artifacts.
Key features of GitCustodian include:
- Highly accurate, comprehensive secrets detection using multiple algorithms and industry-standard profiles
- Scanning of existing source code repositories with centralized snapshot reporting
- Proactive governance gates integrated into CI/CD workflows—detect, remediate, and verify
- Built-in vault support for secure storage of secrets and keys
- Alerting via email, Slack, Microsoft Teams, Jira, and ServiceNow
- Complete insights and analytics for lifecycle health and compliance reporting
As Gilbert Martin, VP of Customer Success and Solutions at Opsera, noted: “GitCustodian scans and alerts security teams of vulnerable secrets lurking in source code repositories before it’s too late… empowering teams to proactively enforce secure software development lifecycle best practices.”