Skip to main content
All integrations are configured in Settings. Connect source control first; it’s what makes the rest of the workflow click into place.

Source control

GitHub

GitHub App for GitHub.com, plus GitHub Enterprise Server via token.

GitLab

GitLab.com, self-managed, and GitLab Dedicated via access token.

Issue trackers

Push validated findings into the tool your team already plans in. Each tracker supports an auto-create option to file work for findings after every scan.

Jira

Project, board, sprint, issue type, assignee, and status mapping.

Linear

Team, project, assignee, labels, and severity-to-priority mapping.

ClickUp

Space and list targeting with auto-created tasks.

Shortcut

Route findings into Shortcut stories by group.

Notifications

Slack

Scan notifications routed per repository, filtered by severity.

Vulnerability management

Export findings one-way into a security platform, where they stay in sync as scans run. Triage in Gecko remains the source of truth.

GitLab vulnerability export

Surface findings in GitLab’s native Security Dashboard.

DefectDojo

Push findings into DefectDojo for centralized vulnerability management.
Most issue-tracker integrations connect over OAuth; Shortcut uses an API token. Connecting requires the Admin or Manager role. See Teams & permissions.