Show HN: CommitGate – Automatically scan your commit for vulnerabilities (github.com)

CommitGate has launched a tool that enhances security for Git users by automatically scanning commit changes for vulnerabilities before they can be added to version control. Every time a user runs `git commit`, CommitGate employs two layers of detection: a deterministic scanner (Gitleaks) identifies common secrets such as API keys and passwords, while a semantic AI reviewer based on providers like OpenAI and Groq scrutinizes more complex issues that regex might miss, including non-standard credentials and potentially risky logic. Combined findings are processed through a decision engine that classifies the commit as allowed, warned, or blocked, all while producing a detailed terminal report. This development is significant for the AI/ML community as it integrates advanced machine learning techniques into practical tools that can prevent security issues in software development. By merging AI semantic analysis with traditional scanning, CommitGate offers a robust solution to address both known and nuanced vulnerabilities. This empowers developers to maintain clean commit histories while keeping sensitive information from slipping through the cracks. Furthermore, the tool’s audit logging feature allows for enhanced transparency and accountability, making it a valuable asset for teams prioritizing security in their development pipelines.