Integrations

Our SaaS technology seamlessly integrates into your security workflow

Source Code Management
CI/CD
Container
SIEM
Management Services

Gitlab CI/CD

What is it?

GitLab CI/CD is a tool for software development using continuous integration and continuous deployment.

What does the integration do?

Add the MergeBase CLT to your Gitlab CI/CD projects.

How does it work?

Add a custom step to your pipelines and get scans in your custom dashboard.

Resources:
Screenshots:
  • Creating new CI/CD pipeline
  • Example of using MergeBase in a pipeline

GitHub

What is it?

With every commit MergeBase CodeGreen analyses the code developers want to add to your repositories for known-vulnerabilities and triggers checks and automatic pull request reviews. You can configure these to extend full enterprise control over these potentially catastrophic risks to your organization.

What does the integration do?

Scans commits and pull requests and sends them to your MergeBase dashboard.

How does it work?

Enable CodeGreen and immediately start receiving commit checks and pull request reviews.

Resources:
Screenshots:
  • Example of a pull request report
  • Example of a commit check report

Docker

What is it?

Docker is a set of platform-as-a-service products that use OS-level virtualization to deliver software in packages called containers.

What does the integration do?

Scans docker containers for vulnerable binaries.

How does it work?

Invoke the MergeBase CLT.

Resources:
Screenshots:
  • Product Description

IBM QRADAR

What is it?

IBM QRadar XDR, a modular security suite, helps security teams gain visibility to quickly detect, investigate and respond to threats.

What does the integration do?

Sends MergeBase alerts through Syslog to QRadar or other SIEM platforms.

How does it work?

Enable the integration by setting configuration values in the MergeBase dashboard.

Resources:
Screenshots:

Jira

What is it?

Plan, track, and manage your agile and software development projects in Jira. Customize your workflow, collaborate, and release great software.

What does the integration do?

Add Jira tickets for vulnerabilities found by MergeBase.

How does it work?

After enabling the Jira integration you can create tickets directly from the MergeBase dashboard.

Resources:
Screenshots:
  • Settings for Jira Integration

Jenkins

What is it?

MergeBase is an SCA extension (software composition analysis) that scans your applications within Jenkins. It helps your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web-based dashboard.

What does the integration do?

Integrates a MergeBase scan into your Jenkins CI/CD pipeline.

How does it work?

Add the Jenkins plugin to your Jenkins projects – view the scans in your custom dashboard.

Resources:
Screenshots:
  • Plugin Settings
  • Plugin Settings

Bamboo

What is it?

MergeBase is an SCA extension (software composition analysis) that scans your applications within your Bamboo plans. Use MergeBase to help your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web based dashboard.

What does the integration do?

Integrates MergeBase into Bamboo CI/CD pipelines.

How does it work?

Add the plugin, and enter your credentials. You will receive the scans in your custom dashboard.

Resources:
Screenshots:
  • Bamboo Settings

Teamcity

What is it?

Scan your source code with MergeBase directly from it.

What does the integration do?

Scan your source code with MergeBase directly from your Teamcity Ci/CD pipeline.

How does it work?

Add the Mergebase CLT to your TeamCity projects, then view the scans in your custom dashboards.

Resources:
Screenshots:
  • Product Screenshot

Azure DevOps

What is it?

MergeBase is an SCA extension (software composition analysis) that scans your applications within your azure DevOps plans. Use MergeBase to help your development teams identify dangerous and insecure library versions early. Your results will be displayed in your own web based dashboard.

What does the integration do?

Integrates Mergebase into azure DevOps pipeline jobs.

How does it work?

Add the plugin, and enter your credentials. You will receive the scans in your custom dashboard.

Resources:
Screenshots:
  • Plugin Settings
  • Settings-as-code

Bitbucket Pipelines

What is it?

Bitbucket Pipelines is a tool for software development using continuous integration and continuous deployment

What does the integration do?

Integrates a MergeBase scan into your Bitbucket pipeline.

How does it work?

Add the pipeline, and enter your credentials. You will then receive scans in your custom MergeBase dashboard.

Screenshots:
  • Product Screenshot

Github Action

What is it?

A Github action to scan your repositories with MergeBase. Supports Java w/ Maven, NPM, .NET, Ruby, and more.

What does the integration do?

Adds a MergeBase scan as an action to your Github development pipeline.

How does it work?

Add the action, and enter your credentials. You will then receive scans in your custom MergeBase dashboard.

Resources:
Screenshots:
  • How to add from Marketplace
  • Details

Slack

What is it?

Slack is a team messaging app used by companies and developers.

What does the integration do?

Sends MergeBase notifications to Slack.

How does it work?

Enable the integration on the MergeBase dashboard and start receiving notifications in Slack.

Resources:

Screenshots:
  • Settings
  • Example Notification

Splunk

What is it?

Splunk is a data platform that powers enterprise observability, unified security and limitless custom applications in hybrid environments.

What does the integration do?

Sends MergeBase notifications to Splunk.

How does it work?

Enable the integration on the MergeBase dashboard and start receiving notifications in Splunk.

Resources:

Screenshots:
  • Mergebase Settings for Splunk

Microsoft Teams

What is it?

Teams is a messaging app created by Microsoft for organizations and teams.

What does the integration do?

Sends MergeBase notifications to Teams.

How does it work?

Enable the integration on the MergeBase dashboard and start receiving notifications in Teams

Resources:
Screenshots:
  • Mergebase settings for Microsoft Teams

ThreatConnect

What is it?

The ThreatConnect Platform is the unifying force across security teams, fusing cyber threat intelligence, knowledge, and tradecraft across cybersecurity operations and enabling machine power to maximize operational effectiveness and efficiency.

What does the integration do?

Sync your MergeBase vulnerability information to the ThreatConnect intel platform.

How does it work?

Enable the integration on the MergeBase dashboard

Installation Guide:

Create an API user, and enter the API user credentials on the MergeBase settings page.

Screenshots:
  • Settings
  • Screenshot of group created in Threatconnect

Kenna Security

What is it?

Kenna processes and analyzes 18+ threat and exploit intelligence feeds, 12.7+ billion managed vulnerabilities, and your enterprise’s security data to give you an accurate view of your company’s risk.

What does the integration do?

Add MergeBase vulnerability results to your Kenna Dashboard.

How does it work?

Talk to us for more information.

Screenshots:

Nucleus

What is it?

Nucleus Security is an automated vulnerability management solution that accelerates vulnerability response and enhances application security.

What does the integration do?

Import your MergeBase scans to the Nucleus Reporting Platform.

How does it work?

Add a MergeBase connector to your Nucleus dashboard. You are then able to import your MergeBase scans into the Nucleus platform.

Resources:

Quick Start Guide

Screenshots:
  • How to setup Mergebase connector in Nucleus
  • Settings page for API in MergeBase

Azure Boards

What is it?

Azure Boards, the agile project management tool from Microsoft, you can plan, track, and discuss work across your teams.

What does the integration do?

Add Boards work items for vulnerabilities found by MergeBase.

How does it work?

After enabling the Boards integration, you can create work items directly from the MergeBase dashboard.

Resources:
Screenshots:
  • Azure Boards - Product Screenshot

Bitbucket

What is it?

Bitbucket Pipelines is a tool for software development using continuous integration and continuous deployment

What does the integration do?

Integrates a MergeBase scan into your Bitbucket pipeline.

How does it work?

Add the pipeline, and enter your credentials. You will then receive scans in your custom MergeBase dashboard.

Screenshots:
  • Product Screenshot

GitLab

What is it?

GitLab CI/CD is a tool for software development using continuous integration and continuous deployment.

What does the integration do?

Add the MergeBase CLT to your Gitlab CI/CD projects.

How does it work?

Add a custom step to your pipelines and get scans in your custom dashboard.

Resources:
Screenshots:
  • Creating new CI/CD pipeline
  • Example of using MergeBase in a pipeline

Get a personalized Demo!

Check how MergeBase works throught the development lifecycle in your company.

BOOK A DEMO