Setup Guides

Integration
Setup Guides

Step-by-step guides to connect Cremit with your favorite tools and services

Scan Sources(8)Permission Analysis(2)Alarm Channels(3)SSO (SAML)(1)Directory Sync (SCIM)(2)

Scan Sources

(8)

GitHub Integration

Connect your GitHub organization to Cremit Argus to scan every repository, commit, and issue for exposed API keys, tokens, and secrets. Automatic scope updates when repos are added.

Scans all accessible repositories (public + private) via GitHub AppFull commit history scan, not just the latest HEADIssue and pull request body scanning

⏱️ 5 min

Read Guide

GitLab Integration

Integrate GitLab (SaaS or self-hosted) with Cremit Argus to scan every project, commit, and issue for exposed secrets. Group-level or project-level scope granularity.

Supports both GitLab SaaS and self-hosted instancesFull commit history across all branchesIssue and merge request body scanning

⏱️ 7 min

Read Guide

AWS S3 Integration

Connect AWS S3 buckets to Cremit Argus using a read-only IAM role. Scan object content for exposed secrets without exfiltrating data outside your account.

Read-only IAM role (AmazonS3ReadOnlyAccess scope)Bucket-level or prefix-level scope controlScans object content, not just keys

⏱️ 10 min

Read Guide

Google Drive Integration

Connect Google Workspace shared drives to Cremit Argus. Scan Docs, Sheets, Slides, and uploaded files for hardcoded API keys and credentials.

Shared drive or My Drive scopeScans Docs, Sheets, Slides, and uploaded filesOAuth-based, no service account needed

⏱️ 5 min

Read Guide

Jira Integration

Connect Jira Cloud or Data Center to Cremit Argus to scan issue bodies, comments, and attachments for exposed API keys and credentials.

Jira Cloud and Jira Data Center supportScans issue description, comments, and attachmentsProject-level or site-level scope

⏱️ 7 min

Read Guide

Confluence Integration

Integrate Confluence Cloud or Data Center with Cremit Argus to scan pages, templates, and attachments for exposed credentials in your documentation.

Confluence Cloud and Data Center supportPage, template, and attachment scanningSpace-level scope

⏱️ 7 min

Read Guide

Notion Integration

Connect a Notion workspace to Cremit Argus using an internal integration token. Scan pages, databases, and code blocks for exposed credentials.

Notion internal integration token supportPage, database, and code block scanningWorkspace-level scope

⏱️ 5 min

Read Guide

Slack Message Scanning

Connect Slack to Cremit Argus to scan public channels, private channels, and DMs for credentials pasted during debugging or ops discussions.

Public and private channel scanning (where the app is invited)Optional DM scanning (with workspace admin approval)Historical and real-time scanning modes

⏱️ 5 min

Read Guide

Permission Analysis

(2)

AWS Permission Analyzer

Deploy Cremit's AWS Permission Analyzer via CloudFormation to automatically map IAM permissions attached to any discovered AWS key. Identify over-privileged credentials and assess blast radius.

One-click CloudFormation template deploymentRead-only IAM role (iam:Simulate*, iam:Get*, iam:List*)Permission boundary detection

⏱️ 10 min

Read Guide

GCP Permission Analyzer

Attach a read-only GCP service account to Cremit Argus to analyze IAM bindings, inherited roles, and over-privilege on discovered GCP credentials.

Service-account-based authenticationOrganization, folder, and project-level analysisInherited IAM role resolution

⏱️ 10 min

Read Guide

Alarm Channels

(3)

Slack Alarm Channel (OAuth)

Install the Cremit Argus Slack app to deliver secret exposure alerts, rotation confirmations, and digest summaries to a security channel.

OAuth-based install, no webhook URL managementPer-channel routing rules (severity, source, tag)Interactive buttons for triage (acknowledge, assign, dismiss)

⏱️ 3 min

Read Guide

Webhook Alarm Channel

Route Cremit Argus alerts to any HTTPS webhook. Send structured JSON payloads to PagerDuty, Opsgenie, Discord, or your in-house SOAR pipeline.

Custom HTTPS endpoint with optional HMAC signingStructured JSON payload (severity, source, secret type, location)Configurable retries and dead-letter handling

⏱️ 5 min

Read Guide

Telegram Alarm Channel

Route Cremit Argus alerts to a Telegram channel or group using a bot token. Useful for on-call teams that operate in Telegram rather than Slack.

Bot token authenticationChannel or group targetMarkdown formatting for readability

⏱️ 3 min

Read Guide

SSO (SAML)

(1)

SAML Single Sign-On

Configure SAML 2.0 SSO for Cremit Argus. Works with Okta, Azure AD, Google Workspace, OneLogin, Ping, JumpCloud, and any SAML 2.0-compliant IdP. SP-initiated and IdP-initiated flows supported.

SP-initiated and IdP-initiated flowsSHA-256 signature algorithmNameID format: emailAddress

⏱️ 15 min

Read Guide

Directory Sync (SCIM)

(2)

Okta SCIM Provisioning

Connect Okta to Cremit Argus via SCIM 2.0 to automate user provisioning, group sync, and de-provisioning. Employees lose access the moment they are suspended in Okta.

SCIM 2.0 protocol supportUser create, update, suspend, delete eventsGroup membership sync

⏱️ 15 min

Read Guide

Google Workspace SCIM Provisioning

Provision Argus users from Google Workspace via SCIM 2.0. Automatic group sync, required attributes (email, displayName, active), and real-time deprovisioning.

SCIM 2.0 protocol supportUser and group sync from Google WorkspaceRequired attributes: email, displayName, active

⏱️ 15 min

Read Guide

Need help with setup?

Our support team is here to help you integrate Cremit with your tools

IntegrationSetup Guides

Scan Sources

GitHub Integration

GitLab Integration

AWS S3 Integration

Google Drive Integration

Jira Integration

Confluence Integration

Notion Integration

Slack Message Scanning

Permission Analysis

AWS Permission Analyzer

GCP Permission Analyzer

Alarm Channels

Slack Alarm Channel (OAuth)

Webhook Alarm Channel

Telegram Alarm Channel

SSO (SAML)

SAML Single Sign-On

Directory Sync (SCIM)

Okta SCIM Provisioning

Google Workspace SCIM Provisioning

Need help with setup?

Integration
Setup Guides