GitHub App Integration Overview
What the Nirmata GitHub App integration does and why it improves GitOps security over PAT-based approaches.
Applies to: Nirmata Control Hub 4.0 and later
The GitHub App Integration enables seamless integration between Nirmata and your GitHub repositories. By installing Nirmata’s GitHub App, you can enable GitOps workflows, automated policy remediation, and other Git-based operations across your Nirmata platform.
This integration is used by:
- AI Agents (e.g., Remediator Agent) for creating pull requests with policy fixes
- GitOps workflows for repository synchronization
- Policy management for Git-based policy storage
- Compliance operations for tracking and remediating violations
Benefits
- One-Click Installation: Install Nirmata’s GitHub App directly from the UI
- Enhanced Security: Uses short-lived tokens with fine-grained permissions
- Centralized Management: Manage GitHub integration through Nirmata Control Hub
- Enterprise Ready: Designed for organizational use with proper access control
- Audit Trail: Complete tracking and logging of all GitHub operations
- Multi-Organization Support: Install across multiple GitHub organizations
- No Secret Management: No need to manage tokens or keys manually
Next Steps
- To install and configure the integration, see GitHub App Integration.
- To understand what the app can and cannot access, see GitHub App Permissions.