SecureSlateSecureSlate
Log inSign up
← All docsDocs

Integrations

Connecting SecureSlate & GitHub (Cloud Version)

Category: Version Control System
 

Connecting GitHub to SecureSlate enables comprehensive visibility into your repositories and user access management. This integration allows you to monitor security controls, manage assets, and maintain compliance across your development environment. Follow this guide to set up the integration successfully.

Prerequisites

Before beginning the integration process, ensure you have the necessary permissions:

Organization Owner Access Required

Owner-level permissions in GitHub are essential for this integration. Only Organization Owners can view complete user information, which SecureSlate needs to properly manage access controls and security monitoring.

To verify your Owner status:

  1. Navigate to github.com/settings/organizations
  2. Look for organizations where you see the "Owner" tag next to your organization name
  3. If you don't see any organizations or lack the Owner tag, you'll need to request Owner permissions from your current GitHub Organization Owner

Previous Integration Cleanup

If you've previously connected SecureSlate to GitHub, you may need to remove the existing SecureSlate app from GitHub before proceeding with a fresh integration. This ensures a clean connection without conflicts from previous configurations.

Integration Procedure

Step 1: Access the SecureSlate Integration Page

Begin by navigating to the integrations section within SecureSlate:

  1. Go to the SecureSlate integration page
  2. Select the Available tab to view all available integrations
  3. Search for "GitHub" in the integration list
  4. Click the Connect button next to the GitHub integration
     
    GitHub

Step 2: Initiate the OAuth Connection

After clicking Connect, SecureSlate will open a GitHub integration drawer:

  1. Click the Connect button within the drawer
  2. You'll be redirected to GitHub via OAuth for secure authentication
  3. Review the permissions that SecureSlate is requesting
  4. Click Accept or Authorize to grant SecureSlate access to your GitHub organization

The OAuth process ensures secure authentication without sharing your GitHub credentials directly with SecureSlate.

If you click on Automated Controls and Test you can see the automated tests and where it is mapped in the controls.
 
GitHub

Step 3: Select Your Organization

Once you've authorized the connection, GitHub will redirect you back to SecureSlate:

  1. The integration drawer will reopen automatically
  2. You'll see a list of GitHub organizations where you have Owner permissions
  3. Select the organization you want to connect to SecureSlate
  4. Confirm your selection
     
    GitHub

Step 4: Automatic Data Sync

After selecting your organization, SecureSlate will automatically begin synchronizing data:

  • Repository Assets: All repositories from your selected GitHub organization will be fetched and appear on the Assets page in SecureSlate
  • User Data: User information and access permissions will be imported for comprehensive user access management
  • Automated Controls: Security controls and tests will be mapped and available for monitoring

Step 5: Review Automated Controls and Tests

To view how GitHub integrates with your security framework:

  1. Navigate to Automated Controls and Test within SecureSlate
  2. Review the automated tests that are now active
  3. See how these tests map to your security controls and compliance requirements

This visibility helps you understand which security measures are being monitored automatically through the GitHub integration.

Verifying Successful Integration

To confirm that GitHub has been successfully connected to SecureSlate:

  1. Open GitHub and navigate to your Organization settings
  2. Go to Installed GitHub Apps in your organization settings
  3. Look for SecureSlate GitHub Integration in the list of installed applications
  4. If present, your integration is active and functioning

You should also see your GitHub repositories appearing in the SecureSlate Assets page and user access data populating in your user access management dashboard.

What Happens Next

With GitHub successfully integrated into SecureSlate, you can now:

  • Monitor all repositories as security assets
  • Track user access and permissions across your development environment
  • Receive automated security testing and control monitoring
  • Maintain compliance with mapped security frameworks
  • Generate reports that include your GitHub infrastructure in its respective tests

Troubleshooting

If you encounter issues during integration:

  • Verify you have Organization Owner permissions in GitHub
  • Check that you've removed any previous SecureSlate installations from GitHub
  • Ensure you're selecting the correct organization during the connection process
  • Review that all OAuth permissions were granted during the authorization step

For additional support, contact your support team through email or live chat.

Last updated: March 9, 2026