CybeDefend Configuration
| Field | Description | Example |
|---|---|---|
| GitLab Project ID | Numeric project ID in GitLab | 12345 |
| Registry URL | GitLab registry URL | registry.gitlab.com |
| Project Path | Project path in GitLab | username/project or group/project |
| Project Access Token | GitLab project access token | glpat-xxxxxxxxxxxx |
How to Create a Project Access Token in GitLab
1
Access GitLab Project
Go to your GitLab project → Settings → Access Tokens
2
Create Token
Create a new token with a name (e.g.,
CybeDefend Scanner)3
Select Role
Select the role: Reporter (minimum) or Developer
4
Select Scopes
Select the required scopes:
read_api(required to list images)read_registry(required to access the registry)
5
Create and Copy
Click Create project access token and copy it immediately (you won’t see it again!)
6
Configure CybeDefend
Paste the credentials with your project information in CybeDefend
Security Best Practices
Use Project Tokens
Prefer project access tokens over personal tokens for better security isolation.
Minimal Scopes
Only grant
read_api and read_registry scopes for scanning.Set Expiration
Always set an expiration date for your tokens to limit exposure.
Reporter Role
Use Reporter role instead of Developer when only read access is needed.
Troubleshooting
Authentication Failed
Authentication Failed
- Verify token has both
read_apiandread_registryscopes - Check if the token has expired
- Ensure the registry URL is correct
Permission Denied
Permission Denied
- Verify the project ID is correct
- Check project visibility settings
- Ensure registry is enabled for the project