Before you use security scans, reports, or CLA checks, connect GitHub from the Integrations page. Access is granted through GitHub Apps, so you choose repositories during installation—not via a broad OAuth token.

What connecting enables

• Repository list and per-repo configuration
• Pull requests — security scans, contributor trust, and CLA checks
• Reports — repository scans and agent red-team projects
• Findings — advisories and report-derived issues
• Contributors and Agreements — CLA templates, signatures, and coverage

Setup steps

1. Sign in to the Superagent dashboard.
2. Open Integrations and install the GitHub App that matches your workflow.
3. In GitHub, install on the organization or account that owns your repositories.
4. Choose Only select repositories and pick the repos Superagent should access.
5. Return to Superagent after GitHub redirects you back.

Which app to install

App	Install URL	Use when you need
Superagent Security	github.com/apps/superagent-security	PR scans, contributor trust, repository reports, GitHub advisories
Open CLA	github.com/apps/open-cla	CLA checks, contributor signing, template enforcement

You can install one or both apps on the same repositories.

After connecting

• Open Repository to confirm connected repos appear with the right capabilities.
• Configure security and CLA settings on each repository detail page.
• Open Pull requests to confirm PR activity appears for scanned repos.
• Create your first Report from Reports → Create report.

Next steps

• Install GitHub Apps
• Core concepts
• Integrations