Skip to main content

Connecting Vanta & GitLab Cloud

S
Written by Shannon DeLange
Updated this week

The GitLab integration allows you to connect both Cloud & Self-Managed types of GitLab instances.

Gitlab Cloud allows customers to connect tools like Vanta using OAuth. By connecting your GitLab Cloud account with Vanta, Vanta is able to make API calls as the connecting user, allowing you to automate the collection of evidence for your code repository configurations, pull request workflows, and security issue tracking.

Integrating with GitLab Cloud

  • From the left-hand navigation panel, select Integrations

  • Select the Available tab, and search for GitLab

  • Select Connect

  • On the next page, select Cloud, then click next.

Screenshot 2024-01-23 at 4.45.33 pm.png

  • Vanta will request access to your GitLab account; select Connect to GitLab Cloud

  • You will be redirected to sign in to your GitLab account. You will need to log in as the owner of the GitLab group you wish for Vanta to scan.

  • The page will redirect to Vanta. When prompted, select the Gitlab group you want Vanta to scan, then click Link GitLab account.

    • Please note: Vanta is only able to connect and fetch one group and the subgroups beneath that for GitLab

Screenshot 2024-01-23 at 4.55.01 pm.png

  • GitLab cloud is now connected. Resources will begin populating within the hour.

Screenshot 2024-01-23 at 4.56.05 pm.png

Configure the Scope

  • Establish which GitLab items should be marked in or out of scope for your audit

Screenshot 2023-08-21 at 2.01.21 PM.png

  • You can configure scopes later by clicking on Configure scope on the connected GitLab card from the integrations page

Screenshot 2024-01-23 at 4.57.19 pm.png
Related Articles
Connecting Vanta & AWS Organization
Connecting Vanta & Supabase
Connecting Vanta & Pipedrive
Connecting Vanta & GitLab Self-Managed instance
Where does Vanta Pull Vulnerabilities from in Gitlab?