GitLab integration for API & AI discovery

Updated: October 30, 2025

Integrations Discovery Integrations

This integration allows you to scan your GitLab repositories for OpenAPI specifications, AI models, and prompts by connecting FireTail to your GitLab. It also generates OpenAPI specifications from static code analysis for selected languages.

Before configuring the integration, you must first create an application within GitLab:

  1. Open GitLab.
  2. On the left menu, select Settings > Applications.
  3. Click Add new application.
  4. Enter a Name for the application.
  5. Provide a Redirect URI: https://firetail.app/setup/gitlab.
  6. Under Scopes, select:
    • api
    • read_repository
    • read_api
  7. Click Save application.
  8. Copy the Application ID and Secret. These credentials are required when setting up the integration in FireTail.

Configuring the FireTail integration

When the GitLab application is created, proceed with setting up the FireTail integration:

  1. In the side menu, go to Platform, then select Integrations.

  2. Click Create Integration. Filter by selecting the Discovery category.

  3. Select GitLab Repo Scanning.

  4. Fill out the integration form:

    • Name of Integration: Enter a name for the integration.
    • GitLab URL: This is the address where your GitLab instance is hosted. If you are using the cloud-based version provided by GitLab, the URL will be https://gitlab.com. For self-hosted instances, input the URL specific to your environment. For example, https://gitlab.companyname.com.
    • GitLab Group Path - The path used to define the location of a group within GitLab. For example, gitlab.com/development-team or companyname.com/development-team.
    • Gitlab Application ID - Paste the application ID from the GitLab application you created.
    • Gitlab Application Secret - Paste the application secret provided when the application was created.
    • Project: Select an existing project from the dropdown, or click Create to create a new one. Discovered APIs will be grouped under this project.
    • Ignore Archived Repositories: Enable to skip scanning of any archived repositories.
    • Delete Archived Repository: Enable to remove APIs associated with archived repositories from the FireTail platform, including all specifications and findings.
    • Scan Frequency: Enter the scan interval in hours (minimum is 24 hours).

  5. Click Authenticate.

    • Click button to authenticate.
    • A new window will open, click Authorize firetail.io to grant access.
    • The integration after creation will automatically redirect to the associated application.

View discovered resources

The discovered APIs can be viewed by going to API in the side menu and selecting Inventory. Any Specifications and Findings are automatically loaded.

Note: It may take a few minutes for the discovered resources to populate into the platform.

Need help?

Contact FireTail support