ShipSecure

GitLab

Configure GitLab for Radar

GitLab uses access tokens instead of an app model. Works with both gitlab.com and self-hosted instances.

Create an access token

Go to your Project (or Group) > Settings > Access Tokens.

Create a new token:

  • Name: Radar Security
  • Role: Developer or higher
  • Scopes: api

Copy the token (starts with glpat-).

Configure the webhook

Go to Settings > Webhooks in your project or group and add a new webhook:

FieldValue
URLhttps://your-domain.com/gitlab/webhook
Secret tokenGenerate one: openssl rand -hex 32
TriggerMerge request events
SSL verificationEnable (recommended)

Environment variables

GITLAB_ACCESS_TOKEN=glpat-xxxxxxxxxxxxxxxxxxxx
GITLAB_WEBHOOK_SECRET=your-webhook-secret

The GitLab instance URL is automatically detected from the webhook payload, so self-hosted instances work without extra configuration.

GitHub

Configure a GitHub App for Radar

AI Providers

Choose between Anthropic and OpenAI

On this page

Create an access tokenConfigure the webhookEnvironment variables