Maintain security for your Tailscale secrets with GitGuardian

Tailscale provides a programmable network to our customers that is both secure enough to earn their trust and flexible enough to meet their networking needs across a wide range of infrastructure set-ups. We focus on making the locks trustworthy so our customers can focus on keeping track of their keys. Today, we’re making another step forward on this journey by announcing an integration between Tailscale and GitGuardian, the popular code security platform.

GitGuardian’s Tailscale secret detector scans your source code for any Tailscale secrets, verifies if the secret is still active, and then notifies you so you can revoke the secret.

GitGuardian can now monitor for any of five Tailscale secrets: API keys, Pre-authentication keys, OAuth client secrets, SCIM keys, and webhook keys. Keeping these keys safe is part and parcel of our shared security model.

Tailscale automatic secret scanning is available on all of GitGuardian’s plans. To use it, integrate your GitHub, GitLab, or Bitbucket repositories with GitGuardian. When GitGuardian’s secrets detection engine detects a hardcoded Tailscale secret, you’ll be notified of the incident in your GitGuardian dashboard.

Learn more about GitGuardian and the new Tailscale secrets detector in their announcement post.