Block Secrets Before They Reach Your Default Branch

Native GitHub and GitLab enforcement that checks every pull request and merge request for secrets, PII, and credential exposure. Developers get instant feedback without leaving their workflow.

< 8s

Median check time

467

Detection patterns

0

Secrets reach default branch

GitHub PR Gate

Native GitHub App integration. Install once, enforce across all repositories.

  • Required status check on pull requests
  • Inline PR comments with finding details
  • Configurable enforcement modes: block, warn, or monitor
  • Branch protection rule integration
  • Starter: 5 repos | Professional: 50 repos | Enterprise: Unlimited

GitLab MR Gate

Native GitLab integration for merge request enforcement.

  • Pipeline job integration for merge requests
  • Inline MR comments with finding context
  • Configurable enforcement: block, warn, or monitor
  • Protected branch enforcement
  • Available on Professional and Enterprise tiers

Enforcement Modes

Block

Prevent merge when secrets are detected. The PR check fails and developers must remove the secret before merging.

Warn

Allow merge but flag the finding. PR check passes with a warning comment. Findings appear in the dashboard for review.

Monitor

Silent monitoring with no PR feedback. Findings are recorded in the dashboard only. Useful during rollout and evaluation.

Developer Experience

Designed to protect without slowing developers down.

# Typical PR check flow
09:14:32 PR #847 opened by @developer
09:14:33 Netallion AI Assurance check started...
09:14:38 Netallion AI Assurance scanning 12 changed files (467 patterns + BPE)
09:14:39 FINDING AWS Access Key in src/config.ts:42
09:14:39 VERIFIED Key is active (AWS STS GetCallerIdentity)
09:14:40 BLOCKED PR check failed - 1 active secret detected
Total check time: 7.8 seconds

Enable PR enforcement in 15 minutes

Install the GitHub App or GitLab integration and start blocking secrets immediately.

Start Free TrialAll Features