GitLab Security
- 03 Jan 2025
- 1 Minute to read
- Contributors
- Print
- DarkLight
GitLab Security
- Updated on 03 Jan 2025
- 1 Minute to read
- Contributors
- Print
- DarkLight
Article summary
Did you find this summary helpful?
Thank you for your feedback
GitLab integrates a wide array of security tools directly into the development workflow, including SAST, DAST, container scanning, SCA, secret detection, and fuzz testing. This enables developers to identify and address security vulnerabilities.
Integration Method: API
Tables: Vulnerability Findings, Detection Findings
GitLab Configuration
- Login to your GitLab account.
- In the upper-right corner, click the profile photo, then click Settings.
- Select the access tokens status bar and generate a new personal access token
2. Under Token name, enter a name for the token.
3. Under Expiration, select an expiration for the token. Ensure that the token expiration is set to a larger number of days
4. Under scopes select api, read_api and read_user and create personal access token.
5. Copy the generated API token for later use
.png?sv=2022-11-02&spr=https&st=2025-01-18T10%3A58%3A30Z&se=2025-01-18T11%3A08%3A30Z&sr=c&sp=r&sig=Qir1vSMo2gy7MLyQyI5n3NjKb8oZ2DfGrrtRZaNHffA%3D)
DataBee Configuration
- Login to the DataBee console, navigate to Data > Data Feeds and click the Add New Data Source button
- Search for Gitlab Security, select it and click on API Ingest
- Search for the GitLab Security option using the search bar in the Add New Data Source page.
4. Select the API Ingest option. Name the feed and enter basic contact information and click Next
5. In the feed configuration dialog, enter the following:
- Authorization Method: Bearer Token
- Token: Paste the API key generated earlier
6. Click Submit
Was this article helpful?