Integrations

Our SaaS technology seamlessly integrates into your security workflow

Source Code Management
  • GitHub
  • Bitbucket
  • GitLab
CI/CD
  • GitLab Logo
  • Jenkins Logo
  • Bambom Logo
  • TeamCity Logo
  • Azure DevOps Logo
  • Bitbucket Pipelines Logo
  • Github Action Logo
Container
  • Docker Logo
SIEM
  • IBM QRADAR Logo
  • Slack Logo
  • Splunk Logo
  • Teams Logo
Management Services
  • Jira Logo
  • ThreatConnect Logo
  • Kenna Security Logo
  • Nucleus Logo

GitHub

What is it?

With every commit MergeBase analyses the code developers want to add to your repositories for known-vulnerabilities and triggers checks and automatic pull request reviews. You can configure these to extend full enterprise control over these potentially catastrophic risks to your organization.

What does the integration do?

Scans commits and pull requests and sends them to your MergeBase dashboard.

How does it work?

Enable Mergebase and immediately start receiving commit checks and pull request reviews.

GitHub

Bitbucket

What is it?

Bitbucket Pipelines is a tool for software development using continuous integration and continuous deployment

What does the integration do?

Integrates a MergeBase scan into your Bitbucket pipeline.

How does it work?

Add the pipeline, and enter your credentials. You will then receive scans in your custom MergeBase dashboard.

Resources:
Bitbucket
Screenshots:
  • Product Screenshot
Product Screenshot

GitLab

What is it?

GitLab CI/CD is a tool for software development using continuous integration and continuous deployment.

What does the integration do?

Add the MergeBase CLT to your Gitlab CI/CD projects.

How does it work?

Add a custom step to your pipelines and get scans in your custom dashboard.

Resources:
GitLab
Screenshots:
  • Creating new CI/CD pipeline
Creating new CI/CD pipeline
  • Example of using MergeBase in a pipeline
Example of using MergeBase in a pipeline

Gitlab CI/CD

What is it?

GitLab CI/CD is a tool for software development using continuous integration and continuous deployment.

What does the integration do?

Add the MergeBase CLT to your Gitlab CI/CD projects.

How does it work?

Add a custom step to your pipelines and get scans in your custom dashboard.

Resources:
GitLab Logo
Screenshots:
  • Creating new CI/CD pipeline
Creating new CI/CD pipeline
  • Example of using MergeBase in a pipeline
Example of using MergeBase in a pipeline

Jenkins

What is it?

MergeBase is an SCA extension (software composition analysis) that scans your applications within Jenkins. It helps your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web-based dashboard.

What does the integration do?

Integrates a MergeBase scan into your Jenkins CI/CD pipeline.

How does it work?

Add the Jenkins plugin to your Jenkins projects – view the scans in your custom dashboard.

Resources:
Jenkins Logo
Screenshots:
  • Plugin Settings
Plugin Settings
  • Plugin Settings
Plugin Settings

Bamboo

What is it?

MergeBase is an SCA extension (software composition analysis) that scans your applications within your Bamboo plans. Use MergeBase to help your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web based dashboard.

What does the integration do?

Integrates MergeBase into Bamboo CI/CD pipelines.

How does it work?

Add the plugin, and enter your credentials. You will receive the scans in your custom dashboard.

Resources:
Bambom Logo
Screenshots:
  • Plugin Settings
Plugin Settings

Teamcity

What is it?

Scan your source code with MergeBase directly from it.

What does the integration do?

Scan your source code with MergeBase directly from your Teamcity Ci/CD pipeline.

How does it work?

Add the Mergebase CLT to your TeamCity projects, then view the scans in your custom dashboards.

Resources:
TeamCity Logo
Screenshots:
  • Product Screenshot
Product Screenshot

Azure DevOps

What is it?

MergeBase is an SCA extension (software composition analysis) that scans your applications within your azure DevOps plans. Use MergeBase to help your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web based dashboard.

What does the integration do?

<span data-sheets-value='{&quot;1&quot;:2,&quot;2&quot;:&quot;Integrates mergebase into azure devops pipeline jobs&quot;}' data-sheets-userformat='{&quot;2&quot;:769,&quot;3&quot;:{&quot;1&quot;:0},&quot;11&quot;:3,&quot;12&quot;:0}'>Integrates Mergebase into azure DevOps pipeline jobs.</span>

How does it work?

Add the plugin, and enter your credentials. You will receive the scans in your custom dashboard.

Resources:
Azure DevOps Logo
Screenshots:
  • Plugin Settings
Plugin Settings
  • Settings-as-code
Settings-as-code

Bitbucket Pipelines

What is it?

Bitbucket Pipelines is a tool for software development using continuous integration and continuous deployment

What does the integration do?

Integrates a MergeBase scan into your Bitbucket pipeline.

How does it work?

Add the pipeline, and enter your credentials. You will then receive scans in your custom MergeBase dashboard.

Resources:
Bitbucket Pipelines Logo
Screenshots:
  • Product Screenshot
Product Screenshot

Github Action

What is it?

A Github action to scan your repositories with MergeBase. Supports Java w/ Maven, NPM, .NET, Ruby, and more.

What does the integration do?

Adds a MergeBase scan as an action to your Github development pipeline.

How does it work?

Add the action, and enter your credentials. You will then receive scans in your custom MergeBase dashboard.

Resources:
Github Action Logo
Screenshots:
  • How to add from Marketplace
How to add from Marketplace
  • Details
Details

Docker

What is it?

Docker is a set of platform-as-a-service products that use OS-level virtualization to deliver software in packages called containers.

What does the integration do?

Scans docker containers for vulnerable binaries.

How does it work?

Invoke the MergeBase CLT.

Resources:
Docker Logo
Screenshots:
  • Product Description
Product Description

IBM QRADAR

What is it?

IBM QRadar XDR, a modular security suite, helps security teams gain visibility to quickly detect, investigate and respond to threats.

What does the integration do?

Sends MergeBase alerts through Syslog to QRadar or other SIEM platforms.

How does it work?

Enable the integration by setting configuration values in the MergeBase dashboard.

Resources:
IBM QRADAR Logo
Screenshots:

Slack

What is it?

Slack is a team messaging app used by companies and developers.

What does the integration do?

Sends MergeBase notifications to Slack.

How does it work?

Enable the integration on the MergeBase dashboard and start receiving notifications in Slack.

Resources:
Slack Logo
Screenshots:
  • Settings
Settings
  • Example Notification
Example Notification

Splunk

What is it?

Splunk is a data platform that powers enterprise observability, unified security and limitless custom applications in hybrid environments.

What does the integration do?

Sends MergeBase notifications to Splunk.

How does it work?

Enable the integration on the MergeBase dashboard and start receiving notifications in Splunk.

Resources:
Splunk Logo
Screenshots:
  • Mergebase Settings for Splunk
Mergebase Settings for Splunk

Microsoft Teams

What is it?

Teams is a messaging app created by Microsoft for organizations and teams.

What does the integration do?

Sends MergeBase notifications to Teams.

How does it work?

Enable the integration on the MergeBase dashboard and start receiving notifications in Teams

Resources:
Teams Logo
Screenshots:
  • Mergebase settings for Microsoft Teams
Mergebase settings for Microsoft Teams

Jira

What is it?

Plan, track, and manage your agile and software development projects in Jira. Customize your workflow, collaborate, and release great software.

What does the integration do?

Add Jira tickets for vulnerabilities found by MergeBase.

How does it work?

After enabling the Jira integration you can create tickets directly from the MergeBase dashboard.

Resources:
Jira Logo
Screenshots:
  • Settings for Jira Integration
Settings for Jira Integration

ThreatConnect

What is it?

The ThreatConnect Platform is the unifying force across security teams, fusing cyber threat intelligence, knowledge, and tradecraft across cybersecurity operations and enabling machine power to maximize operational effectiveness and efficiency.

What does the integration do?

Sync your MergeBase vulnerability information to the ThreatConnect intel platform.

How does it work?

Enable the integration on the MergeBase dashboard

Resources:
ThreatConnect Logo
Screenshots:
  • Settings
Settings
  • Screenshot of group created in Threatconnect
Screenshot of group created in Threatconnect

Kenna Security

What is it?

Kenna processes and analyzes 18+ threat and exploit intelligence feeds, 12.7+ billion managed vulnerabilities, and your enterprise’s security data to give you an accurate view of your company’s risk.

What does the integration do?

Add MergeBase vulnerability results to your Kenna Dashboard.

How does it work?

Talk to us for more information.

Resources:
Kenna Security Logo
Screenshots:

Nucleus

What is it?

Nucleus Security is an automated vulnerability management solution that accelerates vulnerability response and enhances application security.

What does the integration do?

Import your MergeBase scans to the Nucleus Reporting Platform.

How does it work?

Add a MergeBase connector to your Nucleus dashboard. You are then able to import your MergeBase scans into the Nucleus platform.

Resources:
Nucleus Logo
Screenshots:
  • How to setup Mergebase connector in Nucleus
How to setup Mergebase connector in Nucleus
  • Settings page for API in MergeBase
Settings page for API in MergeBase

Get a personalized Demo!

Check how MergeBase works throught the development lifecycle in your company.

Book a Demo