GitLab Event Collector
This Integration is part of the GitLab Pack.#
Supported versions
Supported Cortex XSOAR versions: 6.8.0 and later.
An event collector for Gitlab audit events and events using Gitlab's API.
Audit events API documentation
Events API documentation
Configure Gitlab Event Collector on Cortex XSIAM#
- Navigate to Settings > Configurations > Automation & Feed Integrations.
- Search for Gitlab Event Collector.
- Click Add instance to create and configure a new integration instance.
| Parameter | Description | Required |
|---|---|---|
| Server Host | Gitlab Git URL. | True |
| API key | The request API key. | True |
| Groups IDs | A comma-separated list of group IDs to get. | False |
| Projects IDs | A comma-separated list of project IDs to get. | True |
| The product name corresponding to the integration that originated the events | The name of the product to name the dataset after. | False |
| The vendor name corresponding to the integration that originated the events | The name of the vendor to name the dataset after. | False |
| First fetch from API time | The time to first fetch from the API. | True |
- Click Test to validate the URLs, tokens, and connection.
Commands#
You can execute these commands in a playbook.
gitlab-get-events#
Manual command to fetch events and display them.