Integrations & Scanners Reference

For: Shielda users and administrators Last Updated: 2026-04-03

---

Platform Integrations Agent-Side Security Tools Report Import Parsers Tool Bundles CI/CD Integration

---

Platform Integrations

Source Code Management

Integration Auth Method Features Setup GitHub OAuth 2.0 Repository listing, webhook events, PR comments, code scanning alerts Settings → Integrations → GitHub → Connect GitLab OAuth 2.0 Repository listing, merge request comments, pipeline integration Settings → Integrations → GitLab → Connect Bitbucket OAuth 2.0 Repository listing, PR comments, pipeline integration Settings → Integrations → Bitbucket → Connect

Self-hosted GitLab: Set GITLABBASEURL environment variable to your instance URL.

Communication

Integration Auth Method Features Setup Slack OAuth 2.0 Scan notifications, finding alerts, agent status updates to Slack channels Settings → Integrations → Slack → Connect Webhooks URL + secret Send JSON payloads for all events to any HTTP endpoint Settings → Webhooks → Add Endpoint

Project Management

Integration Auth Method Features Setup Jira OAuth 2.0 (Atlassian) Create tickets from findings, sync finding status, link issues Settings → Integrations → Jira → Connect

All integrations follow the same OAuth flow: Click Connect in Settings → Integrations Redirect to the provider's authorization page Grant permissions → redirected back to Shielda Integration saved and active

---

Agent-Side Security Tools

The Shielda Go Agent ships with 21 built-in security tools across 11 categories.

AI/ML Security

Tool Description Category Website Garak LLM vulnerability scanner — probes for prompt injection, jailbreaks, data leakage AI/ML Security garak.ai ModelScan ML model file scanner — detects malicious payloads in serialized models AI/ML Security github.com/protectai/modelscan NB Defense Jupyter notebook security scanner — finds secrets, PII, unsafe code in notebooks AI/ML Security github.com/protectai/nbdefense LLM Guard Real-time LLM I/O firewall — sanitizes prompts and responses AI/ML Security llm-guard.com Counterfit ML model adversarial attack framework — tests model robustness AI/ML Security github.com/Azure/counterfit Promptfoo LLM red-teaming and evaluation — tests prompt security and quality AI/ML Security promptfoo.dev ART Adversarial Robustness Toolbox — comprehensive ML attack/defense library AI/ML Security github.com/Trusted-AI/adversarial-robustness-toolbox PyRIT Python Risk Identification Toolkit — automated AI red-teaming AI/ML Security github.com/Azure/PyRIT Guardrails AI LLM output validation framework — schema validation, toxicity, PII detection AI/ML Security guardrailsai.com TextAttack NLP adversarial attack framework — word-level and character-level attacks AI/ML Security github.com/QData/TextAttack

Infrastructure as Code (IaC)

Tool Description Category Checkov IaC static analysis for Terraform, CloudFormation, Kubernetes, Helm, ARM IaC Security Gitleaks Secret detection in git repositories — API keys, passwords, tokens Secrets

Container & Dependency Security

Tool Description Category Grype Container image and filesystem vulnerability scanner Container Security Syft Software Bill of Materials (SBOM) generator SBOM Trivy Comprehensive vulnerability scanner for containers, filesystems, git repos Container Security Semgrep Lightweight static analysis for 30+ languages SAST

Kubernetes Security

Tool Description Category Kubescape Kubernetes security posture management — NSA, MITRE, CIS benchmarks Kubernetes Kube-bench CIS Kubernetes Benchmark checks Kubernetes

Network & DAST

Tool Description Category Nmap Network discovery and security auditing Network ZAP OWASP Zed Attack Proxy — DAST web application scanner DAST Nuclei Template-based vulnerability scanner — 8,000+ community templates DAST

---

Report Import Parsers

The control plane supports importing scan results from 18 external tools. Import via Dashboard → Report Sources → Upload or API (POST /api/report-imports).

Supported Formats

Parser Tool Format Auto-Detect semgrep Semgrep JSON ✅ trivy Trivy JSON ✅ snyk Snyk JSON ✅ zap OWASP ZAP JSON/XML ✅ nuclei Nuclei JSON ✅ bandit Bandit (Python) JSON ✅ checkov Checkov JSON ✅ tfsec tfsec JSON ✅ gitleaks Gitleaks JSON ✅ sonarqube SonarQube JSON ✅ codeql CodeQL SARIF ✅ grype Grype JSON ✅ owasp-dependency-check OWASP Dependency-Check JSON/XML ✅ aws-security-hub AWS Security Hub JSON ✅ gcp-scc GCP Security Command Center JSON ✅ azure-defender Microsoft Defender for Cloud JSON ✅ sarif Any SARIF-compatible tool SARIF (generic) ✅ shielda-json Shielda Agent Native JSON ✅

Auto-Detection

When uploading a report, the system automatically detects the format by trying each parser in priority order. You can also specify the parser explicitly via the format field.

API Import

Mapping

All imported findings are normalized to Shielda's unified finding schema: Severity: Critical / High / Medium / Low / Info Status: Open / Confirmed / In Progress / Resolved / False Positive / Accepted Risk Deduplication: By tool + rule ID + file + line range Enrichment: AI triage assigns CVSS, CWE, OWASP Top 10 mapping

---

Tool Bundles

Pre-configured scan bundles for common use cases: