Authentication

Connect your repository and configure secure authentication.

GitHub Integration

Connect your GitHub account to enable powerful integrations:

Findings automatically created as GitHub Issues
PR checks that block merges with critical vulnerabilities
Auto-close issues when vulnerabilities are fixed
Repository-based authorization verification

Required Permissions

Issues: Read & Write (for creating findings)
Pull Requests: Read & Write (for PR checks)
Contents: Read (for repo verification)
Metadata: Read (for repository information)

API Keys

Generate API keys for programmatic access:

Go to Settings → API Keys
Click Generate New Key
Name your key (e.g., "CI/CD Pipeline")
Set expiration and permissions
Copy and store securely—you won't see it again

⚠️ Never commit API keys to your repository. Use environment variables or secrets management.

SSO / SAML

Enterprise customers can configure Single Sign-On:

SAML 2.0 integration with your identity provider
Support for Okta, Azure AD, OneLogin, and more
SCIM provisioning for automatic user management
Just-in-time provisioning for new users

Contact enterprise@hackerbot.io to configure SSO.

Two-Factor Authentication

We strongly recommend enabling 2FA for your account:

Go to Settings → Security
Click Enable 2FA
Scan the QR code with your authenticator app
Enter the verification code
Save your backup codes securely

Project Setup Your First Scan