Gitleaks
Secret scanning for git repos and CI pipelines.
Why it is included
Gitleaks is an open source secret scanner for git repositories, files, and directories.
Best for
Preventing credential leaks in history and pull requests.
Strengths
- Open source
- High community visibility
Limitations
- Verify license and support model for your use case
Good alternatives
Related tools
Security & Privacy
Semgrep
Static analysis engine matching AST patterns—rules for OWASP classes, secrets, and custom policies.
Security & Privacy
Grype
Vulnerability scanner for container images and filesystems using Anchore’s vulnerability DB and Syft SBOM input.
Security & Privacy
HashiCorp Vault
Secrets management, encryption as a service, PKI, identity plugins, and dynamic credentials for apps and platforms.
Security & Privacy
Checkov
Static analysis for Terraform, CloudFormation, Kubernetes, Docker, and more—hundreds of built-in policy checks.
Security & Privacy
TruffleHog
Secret scanner for git history, CI, and filesystems with verified credential checks against live APIs where safe.
Developer Tools
SonarQube
Continuous inspection for bugs, vulnerabilities, and code smells with quality gates.