Skip to main content

Setting up Your Account

1

Setup an Account

Go to https://startleft.security/ and Login. If this is your first time logging in you will need to establish a password.
2

Configure your Organization

The Start Left Platform will walk-through creating your organization and connecting a code repository. StartLeft
3

Configure your Code Repository Access

SCM
During the onboarding process, you will be walked thru the process of connecting your GitHub account with Start Left. You will need to create a GitHub Access Token, go to https://github.com/
  1. Click on your GitHub Profile Avatar, then Settings, then Developer Settings, then Personal Access Tokens, then Fine-grained Tokens.
  2. Click on Generate Token and provide a meaningful name that you will recognize such as StartLeft.
  3. Set the desired Expiration, one year is recommended.
  4. Select the resource owner.
  5. Select the desired repositories.
  6. Set the permissions for Repository contents to Read-only.
  7. Select Generate Token.
  8. Copy and paste your newly created personal access token into the Personal access token field.
During the onboarding process, you will be walked thru the process of connecting your Azure DevOps account with Start Left. Go to https://dev.azure.com/
  1. Click on your User icon in the upper right corner.
  2. Select User settings.
  3. Personal Access Tokens.
  4. Select New Token.
  5. Enter a Token Name (e.g. “Start Left”).
  6. Under Code check Read scope.
  7. Click Create.
  8. Copy and paste your newly created personal access token into the Personal access token field.
During the onboarding process, you will be walked thru the process of connecting your GitLab account with Start Left. To create a personal access token, go to https://gitlab.com/
  1. Click on your GitLab User Avatar -> Preferences -> Access Tokens -> Add New Token
  2. Set a Token name (e.g. “Start Left”).
  3. Mark the following scopes: read_api, read_user, and read_repository
  4. Click Create personal access token.
  5. Copy and paste your newly created personal access token into the Personal access token field.
During the onboarding process, you will be walked thru the process of connecting your Bitbucket account with Start Left.
4

Create a Product

Configure your initial product, a product can be considered an application comprised of one or more code repositories. Provide a name and description for the product, then optionally configure Business Impact and Compliance tags. Create Product
5

Map Code Repositories

Select the code repositories to be mapped to the product created in the prior step. Map Repos
6

Finish

Finish
Once completed, both a SCA and SAST scan will automatically be triggered for all managed assets. The results will be posted to the asset and product once the scan has completed.