Prerequisites
- A connected GitLab integration with an
api-scoped token. - Vulnerability events enabled on your GitLab webhook, so status stays in sync.
What it does
Gecko syncs findings to the project’s GitLab vulnerability report, giving security teams a single place to review issues from both tools. Triage in Gecko stays the source of truth for the rich call chain, proof of concept, and patch.This is distinct from connecting GitLab for scanning. Connect the
GitLab integration first; vulnerability export builds on
that connection.