GitGuardian Sees Record Growth as Firms Tackle Non-Human Identity Threats

NEW YORK, NY – January 14, 2026 – Secrets security platform GitGuardian has announced record-breaking annual recurring revenue (ARR) and customer expansion for 2025, a year marked by significant adoption from Fortune 500 companies. The growth underscores a critical shift in the cybersecurity landscape, as enterprises grapple with the sprawling and often invisible threat posed by non-human identities (NHIs).

The company reported that over 60% of its new enterprise customers committed to multi-year agreements, signaling deep confidence in its platform as a long-term strategic solution rather than a tactical fix. This momentum was particularly strong in North America, which accounted for over 80% of new ARR, solidifying the firm's position in a market that now generates 70% of its total revenue.

This surge in enterprise commitment is not just a story of business success; it reflects a growing awareness of a fundamental vulnerability in modern software development. As organizations accelerate their digital transformation, the number of automated interactions between applications, services, and infrastructure has exploded, creating a vast and poorly managed web of NHIs—such as API keys, service accounts, and access tokens—that attackers are increasingly targeting.

The Invisible Threat: Securing Non-Human Identities

For years, cybersecurity focused primarily on protecting human users. Today, the battleground has expanded. Non-human identities now vastly outnumber human ones in most tech-driven organizations, acting as the digital keys that unlock access to sensitive data and critical systems. The uncontrolled proliferation of these credentials, a phenomenon known as "secrets sprawl," has become a paramount concern for security leaders.

This sprawl is a direct byproduct of modern development practices. The rise of cloud-native architectures, microservices, and automated CI/CD pipelines means more secrets are generated and used than ever before. These secrets often end up hardcoded in source code, stored in configuration files, or leaked into collaboration tools like Slack and Jira, creating a massive, decentralized attack surface. Industry benchmarks like the OWASP Top 10 consistently list failures in authentication and cryptographic management as top vulnerabilities, many of which stem directly from mismanaged secrets.

GitGuardian's growth is a direct market response to this escalating challenge. The platform's ability to continuously monitor an organization's entire digital footprint for exposed secrets addresses the core of the NHI security problem: a lack of visibility and control. In 2025 alone, the platform detected and helped enterprises remediate 350,000 new potential secret exposures, a figure that highlights the sheer scale of the issue and the tangible impact of proactive detection.

Enterprise Adoption Solidifies Market Leadership

GitGuardian's 2025 roster of new and expanding clients includes a formidable list of global enterprises, such as Deutsche Telekom, BASF, and a leading financial services cooperative with over 55,000 employees. The list also includes several major US-based technology and mobility platforms and a global pharmaceutical giant, demonstrating the platform's appeal across highly regulated and technologically advanced sectors.

This deep adoption in industries like Financial Services, Healthcare, and Insurance is particularly noteworthy. For these organizations, where stringent security and compliance mandates are non-negotiable, the ability to prove control over secrets and non-human identities is a critical business requirement. The trend towards multi-year contracts indicates that these enterprises view NHI security not as a one-time project but as an ongoing operational necessity.

"At the scale of a large enterprise, we wanted to ensure our secrets management approach would meet regulatory standards well ahead of future requirements," stated Grégory Maitrallain, a Solution Architect at Orange Business, an expanding customer.

The platform's scale is a testament to its enterprise readiness. It now protects over 115,000 developers and continuously monitors more than 610,000 enterprise repositories. Perhaps most impressively, its monitoring of connected collaboration tools—a hotbed for accidental leaks—grew sevenfold in 2025 to cover over 210,000 sources.

From Detection to Prevention: A Proactive Shift in Security

The most significant trend illuminated by GitGuardian's success is the industry's pivot from reactive incident response to proactive, preventative security. Rather than waiting for a breach to occur, organizations are embedding security directly into developer workflows to catch and fix vulnerabilities before they can be exploited. This "shift-left" approach is essential for maintaining velocity in a fast-paced DevOps environment.

By integrating seamlessly into developer tools and being the world's most installed GitHub application for secrets detection, the platform is designed to reduce friction between security and development teams. Instead of security acting as a gatekeeper, it becomes an automated partner that provides immediate, actionable feedback.

This proactive stance delivers measurable results. Ari Kalfus, Senior Manager of Product Security at DigitalOcean, noted the platform's efficiency gains, stating, "GitGuardian Platform has helped save significant time for the security team by eliminating the need to seek out development teams and work with them on exposed secrets, as much of this is now handled proactively."

This developer-centric model, combined with a 5x increase in the number of secrets remediated compared to 2024, shows a maturation of the DevSecOps movement. Security is no longer an afterthought but a shared responsibility, enabled by tools that empower developers to write more secure code from the start.

As organizations continue to build their futures on software, the integrity of their code and the security of their development ecosystem are paramount. "Enterprise security teams are recognizing that secrets sprawl across their entire development ecosystem—from code repositories to collaboration tools to AI coding assistants," said Eric Fourrier, CEO at GitGuardian. "Our customers are not just buying a point solution, but investing in a comprehensive Non-Human Identity security platform that scales with their business, which is why we're seeing such strong multi-year commitment."