๐๏ธ What is GuardRails
GuardRails orchestrates open-source, and commercial security tools by integrating them seamlessly into your existing development workflow. GuardRails curates each security rule of the security tools to keep the noise low and only report high-impact and relevant security issues.
๐๏ธ Getting started
Welcome
๐๏ธ Findings
The GuardRails platform takes an opinionated approach by default, which means that we focus on providing security that doesn't get in your way.
๐๏ธ Vulnerabilities
The GuardRails platform takes an opinionated approach by default, which means that we focus on providing security that doesn't get in your way.
๐๏ธ Fine-Grained Access Control
GuardRails is designed in an opinionated way to ensure that 80% of our users can get immediate value without having to tweak any settings. However, we also understand that large organizations and power users require customizations.
๐๏ธ Configuration
At GuardRails, we focus on security that doesn't get in your way. That means supporting a quick and easy installation, without any additional configuration.
๐๏ธ Custom Engine Rules
Overview
๐๏ธ Custom Engines
Overview
๐๏ธ False Positives
Our Philosophy
๐๏ธ Enforce Passing Checks
Once GuardRails has been setup in your VCS, you can enforce passing checks to allow merging of PR/MRs.
๐๏ธ Build Status on Pull Requests
The GuardRails bot sets a status on the pull request depending on what we are doing at the moment.
๐๏ธ Maker and Checker
Instead of just taking an action on a vulnerability, it is important to be able to leave a comment on why this action was taken. And in enterprise settings, GuardRails supports Status update approval (maker/checker) functionality, which means that a user making an action requires another person to check/approve the action before it takes effect.
๐๏ธ FAQ
When does GuardRails comment on a PR/MR?
๐๏ธ Pricing
Free Plan
๐๏ธ Glossary
General
๐๏ธ Tools & Licenses
The vision behind GuardRails is to make security available to all.