Flexible Integration. Built for Your Workflow.
Eureka Integrations
Eureka connects natively with GitHub and runs in any CI/CD platform through the Eureka Radar CLI. Choose from built-in open-source scanners (OpenGrep, DepScan, Grype, GitLeaks) or integrate your existing commercial scanner licenses (Veracode, Semgrep, SonarQube) for unified vulnerability visibility.
Source Control Integration
Eureka connects natively with GitHub and runs in any CI/CD platform through the Eureka Radar CLI. Choose from built-in open-source scanners (OpenGrep, DepScan, Grype, GitLeaks) or integrate your existing commercial scanner licenses (Veracode, Semgrep, SonarQube) for unified vulnerability visibility.
GitHub
GitHub Authentication manages access via OAuth, tokens, or GitHub Apps with fine-grained permissions, offering strong security, 2FA, and seamless CI/CD integration.
- Login with GitHub credentials
- Select and configure repositories directly
- View vulnerabilities linked to exact code locations
- Deploy scanning with our GitHub Action from the Marketplace
Security Scanners
Don’t know which scanners you need? Eureka includes everything required for SOC 2, HIPAA, and PCI compliance from code scanning (SAST), to dependency checking (SCA) and secrets detection. The Eureka Radar CLI orchestrates these scanners for you. Use our built-in open-source scanners, or integrate your existing commercial licenses such Veracode, Semgrep, SonarQube, Snyk, and more. All findings are aggregated, correlated, and mapped to OWASP ASVS.
Static Application Security Testing (SAST)
OpenGrep
Fast, customizable SAST scanner for detecting security vulnerabilities and code quality issues. Supports 30+ languages including Java, Python, JavaScript, Go, Ruby, and C#.
OpenSource, no license required.
Sempgrep Code
Advanced static analysis tool (SAST) for finding bugs, detecting vulnerabilities, and enforcing code standards. Supports 25+ languages including Python, JavaScript, Java, Go, Ruby, and TypeScript.
Requires license, purchased seperately.
SonarQube
Comprehensive code quality and security analysis platform with continuous inspection capabilities. Supports 25+ languages including Java, C#, JavaScript, Python, PHP, and C/C++ with detailed quality metrics.
Requires license, purchased seperately.
VeraCode SAST
Enterprise-grade static analysis with deep security testing capabilities. Supports 100+ languages and frameworks including Java, .NET, JavaScript, Python, PHP, and C/C++.
Requires license, purchased seperately.
Software Composition Analysis (SCA)
OWASP Dep-Scan
OWASP Dependency-Check scans project dependencies for known vulnerabilities using databases like the NVD. It integrates with build tools and CI/CD pipelines for continuous security monitoring.
OpenSource, no license required.
Grype
The Grype scanner is an open-source vulnerability scanner that detects known security issues in container images and file systems by analyzing package dependencies and matching them against public vulnerability databases. It helps developers identify and remediate vulnerabilities early in the software development lifecycle.
OpenSource, no license required.
VeraCode SCA
Software composition analysis for identifying vulnerabilities in open-source libraries and dependencies. Covers all major package managers and languages including Java, JavaScript, Python, Ruby, and .NET.
Requires license, purchased seperately.
Secrets Detection
GitLeaks
Fast secrets detection tool for finding hardcoded credentials, API keys, and tokens in source code and Git history. Supports all programming languages and configuration files.
OpenSource, no license required.
CI/CD Platform Support
The Eureka Radar CLI is an npm-installed orchestration agent that launches scanners as Docker containers. Deploy in any CI/CD environment with our tested configurations and platform-specific instructions.
GitHub Actions
Native CI/CD automation for GitHub repositories. Deploy Eureka scanning with our pre-built GitHub Action from the Marketplace or integrate the Radar CLI directly into your workflows.
Azure DevOps Pipelines
Microsoft’s CI/CD platform for building, testing, and deploying applications. Integrate Eureka Radar CLI into your pipeline YAML configurations for automated security scanning.
Jenkins
Open-source automation server for CI/CD pipelines. Add Eureka Radar CLI to your Jenkinsfile or pipeline scripts to run security scans as part of your build process.
CircleCI
Cloud-based CI/CD platform for automated testing and deployment. Add Eureka Radar CLI to your CircleCI configuration to scan code during the build process.
TeamCity
JetBrains’ CI/CD platform for enterprise development teams. Integrate Eureka Radar CLI as a build step to run security scans within your TeamCity build configurations.
Deployment Options
The Eureka Radar CLI works in any environment with npm and Docker support. Platforms listed above include tested configurations and detailed setup guides.
Eureka Radar CLI (Open Source)
npm-installed agent that orchestrates security scanners in your pipeline. Compatible with any CI/CD platform supporting npm and Docker. [View on GitHub]
GitHub Action
Pre-configured GitHub Action for quick deployment in GitHub Actions workflows. [View in Marketplace]
Issue Tracking Integration (Coming Q2 2025)
Sync vulnerabilities to your issue tracking system for streamlined remediation workflows.
Jira
Jira Software enables agile planning, issue tracking, and release management, providing customizable workflows and real-time insights to help teams efficiently manage projects and deliver high-quality software.
GitHub Issues
GitHub Issues lets teams track tasks, bugs, and feature requests alongside their code. With labels, project boards, and automation, it helps teams stay organized, collaborate efficiently, and streamline development within GitHub.
Azure DevOps Boards
Work tracking system integrated with Azure DevOps. Sync vulnerabilities from Eureka to Azure Boards as work items for streamlined remediation workflow management.
Authentication Support
Secure access with multiple authentication providers.
GitHub
GitHub Authentication manages access via OAuth, tokens, or GitHub Apps with fine-grained permissions, offering strong security, 2FA, and seamless CI/CD integration.
Google (Coming Soon)
Google Authentication lets users securely sign in with Google accounts, supporting MFA and OAuth 2.0 for simple, reliable, and user-friendly access management across platforms.
Microsoft (Coming Soon)
Sign in to Eureka using your Microsoft account credentials. Supports personal Microsoft accounts and Azure Active Directory (Azure AD) organizational accounts.
Ready to Connect Your Tools?
Start with native GitHub integration and built-in scanners, or bring your own commercial licenses.
