Integrations Guide
Index of all integrations: notifications, CI, deployment hooks, SSO, BYOK, test data, audit logs.
Integrations Guide
This is the index for everything AegisRunner integrates with. Each integration has its own dedicated guide; this page tells you what exists and points you to the right one.
Notifications
Push run results, scan completions, and AI-generated tests to where your team already works.
| Integration | What it does | Plan |
|---|---|---|
| Run completion / failure / digest emails. | All | |
| Slack | Block-Kit messages; multi-channel routing on Pro+. | Starter+ |
| Discord | Embed-formatted messages. | Starter+ |
| Microsoft Teams | Adaptive Card messages. | Starter+ |
| Outbound webhooks | HMAC-signed JSON callbacks for custom tooling. | Starter+ |
Source control and CI
| Integration | What it does | Plan |
|---|---|---|
| CI trigger tokens | Trigger scans + runs from any CI pipeline. | All |
| GitHub PR comments | Sticky comment with pass/fail summary. | All |
| GitHub commit status | Status check shows on the PR. | All |
| GitHub Issues | Auto-file issues per failure cluster. | Pro+ |
| Jira | Auto-file tickets per failure cluster. | Pro+ |
Deployment hooks
Trigger scans automatically when something deploys. See Deployment Webhooks.
| Provider | Plan |
|---|---|
| Vercel | Starter+ |
| Netlify | Starter+ |
| GitLab | Starter+ |
| Generic webhook (HMAC-signed) | Starter+ |
Authentication
| Integration | Plan |
|---|---|
| SAML SSO (Okta, Entra, Google Workspace, Auth0, OneLogin, custom) | Business+ |
| OAuth (Google, GitHub) for personal sign-in | All |
| 2FA / TOTP | All; enforcement Business+ |
AI and BYOK
Plug your own LLM API key into AegisRunner's test generator:
| Provider | Notes |
|---|---|
| OpenAI | GPT-4 family. Requires OPENAI_API_KEY. |
| Anthropic | Claude family. |
| OpenRouter | Multi-provider gateway. |
| DeepSeek, Z.AI, MiniMax | Lower-cost frontier models. |
Configure under Project Config → AI Config → BYOK. See AI Test Generation.
Test data and environments
| Surface | What you can store |
|---|---|
| Tokens | API keys, login credentials, bypass tokens. |
| Pre-auth cookies | Session cookies for skipping login. |
| Custom headers | Debug flags, traffic-tagging. |
| Login script | Playwright-style auto-login script. |
| Environments (Pro+) | Multi-environment scoping (staging, preview, prod). |
Compliance and reporting
- Audit logs (Pro+) — every action, who/what/when.
- WCAG 2.1 AA findings — surfaced on every scan; align directly with Section 508 / EN 301 549 requirements.
- SOC 2 — AegisRunner's own SOC 2 process is in flight; ask sales for the latest status.
Roadmap
Integrations on our backlog (no committed dates):
- Bitbucket Pipelines / Bitbucket Cloud PR comments.
- Linear / Asana / Monday for issue tracking.
- PagerDuty / Opsgenie for high-severity failure alerting.
- Slack channel mappings (via API, not just webhooks).
- HashiCorp Vault for secret management.
If something's missing that's blocking you, email hello@aegisrunner.com — we prioritize based on what teams ask for.
Per-project vs org-level
Most integrations are scoped per project (each project has its own CI tokens, webhooks, notification config). A few are org-level:
- SSO/SAML — one IdP per organization.
- Audit log — workspace-wide.
Where to set up integrations
| Where | For |
|---|---|
| Project → Integrations | CI trigger tokens, deployment webhooks, issue tracking, notifications. |
| Project Config → Test Environment | Tokens, cookies, headers, login script. |
| Settings → Integrations | Org-level (SSO, OAuth providers, etc.). |
Common questions
How do I revoke an integration without losing config?
Most integrations have a toggle — turn off, the config remains. Useful for temporary silencing.
Are integration credentials encrypted?
Yes. Webhook URLs (which contain secrets), API tokens, login credentials, OAuth refresh tokens — all AES-256 encrypted at rest.
Can I see when an integration last fired?
Yes — each integration has a delivery / activity log. Notifications: under each channel. Webhooks: under Integrations → Deployment Webhooks → Delivery Log. Etc.
Related
Use the table at the top of this page to navigate to the specific integration guide. Most common starting points: