Integrations/Development & SCM/GitLab

Matproof × GitLab

GitLab — merge request approvals, dependency scanning, SAST, container scanning.

Matproof's GitLab integration collects evidence across self-managed and SaaS GitLab: merge request approvals and required reviewers, protected branches, dependency scanning, SAST/DAST, container scanning, audit events, project access controls. Supports GitLab Dedicated and self-hosted via Personal Access Token or Group Access Token.

Book a demoAll integrations →

Evidence Matproof collects from GitLab

  • Merge request approvals and required reviewers
  • Protected branches and push rules
  • Dependency scanning findings
  • SAST / DAST / Container scanning results
  • Audit events at project, group, and instance level
  • Project and group access permissions
  • Commit signature verification

Frameworks supported

SOC 2ISO 27001NIS2DORA

Typical use cases

  • SOC 2 CC8 change management evidence
  • ISO 27001 A.8.28 secure coding evidence
  • Automated MR-approval evidence for 4-eyes review proof

Setup

  1. 1Create a Group Access Token (preferred) or Personal Access Token with api, read_api, read_repository, read_audit_events scopes
  2. 2Paste token + GitLab URL into Matproof's GitLab setup
  3. 3For self-managed: whitelist Matproof's egress IPs if needed
  4. 4Evidence flows in within 10 minutes

Questions on the setup? Contact us — our team can pair with yours on the connection.

Related integrations

Cloud Platforms
AWS
Development & SCM
GitHub
Ticketing & ITSM
Jira

See Matproof × GitLab in action.

30-minute demo — we connect a sandbox to show evidence flowing for your actual GitLab setup.

Book a demoAll integrations →