Supply chain security can be a struggle. The GitGuardian Source Composition Analysis module scans your project's dependencies, comparing them against public repos. If it finds any matches between your internal packages and public ones, it flags them as potential dependency confusion risks.

Get better insight into your third-party licenses and easily stay on top of any changes with GitGuardian Software Composition Analysis (SCA), you can now get a thorough view of all the licenses used by your applications' dependencies from a single view. In your dashboard under the SCA Dependencies view you can easily filter by each particular license used by the components in your applications. Easily check for any unexpected entries from the convenience of the GitGuardian workspace.

Introducing GitGuardian Software Composition Analysis, further expanding the capabilities of our code security platform. You have long known GitGuardian for secrets detection and remediation, honeytokens, and IaC scanning. Now, with GitGuardian SCA, you can effortlessly scan your applications to detect known vulnerabilities introduced through both Direct & Transitive dependencies. The platform will automatically prioritize incidents depending on their context and help developers find the best path to remediating any issues.

MacOS users can now opt to install ggshield using our new signed packages. Installing ggshield, the GitGuardian CLI is a very quick process, but traditionally has required use of python's pip or homebrew on a macOS system. With the release of ggshield 1.27.0 we are now proud to offer signed DOT P G K files, making it possible to easily distribute ggshield to your team and leverage the official Mac Installer. Since it is officially signed, once downloaded, it just takes a couple of clicks to get it installed.

GitGuardian can now help you find and remediate secrets exposed in your Microsoft Teams channels. We have extended the real-time detection capability of our secrets detection platform to include the popular communications tooling to help teams better fight secrets sprawl throughout their organizations Once integrated, whenever a plaintext credential is accidentally posted to Teams messages, GitGuardian will create an alert and the incident will appear in your GitGuardian dashboard, allowing you to remediate it like any other leaked secret.