GitLab Event Collector
#This Integration is part of the GitLab Pack.
Supported Cortex XSOAR versions: 6.8.0 and later.
An event collector for Gitlab audit events and events using Gitlab's API.
Audit events API documentation
Events API documentation
#Configure Gitlab Event Collector on Cortex XSIAM
- Navigate to Settings > Configurations > Data Collection > Automation & Feed Integrations.
- Search for Gitlab Event Collector.
- Click Add instance to create and configure a new integration instance.
|Server Host||Gitlab Git URL.||True|
|API key||The request API key provided by Gitlab.||True|
|Groups IDs||A comma-separated list of group IDs to retrieve. To view your groups or to create a group, see Manage Groups in the Gitlab documentation.||False|
|Projects IDs||A comma-separated list of project IDs to get. To view your projects or to create a project, see Manage Projects in the Gitlab documentation.||True|
|First fetch timestamp||The period to retrieve events for. In the format ([number] [time unit]). For example, 12 hours, 1 day, 3 months.||False|
|Trust any certificate (not secure)||Use SSL secure connection or ‘None’.||False|
|User system proxy settings||Runs the integration instance using the proxy server (HTTP or HTTPS) that you defined in the server configuration.||False|
- Click Test to validate the URLs, tokens, and connection.
You can execute the following command from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
Manual command to fetch events and display them.
|should_push_events||Set this argument to True in order to create events, otherwise the command will only display them. Default is False.||True|
There is no context output for this command.