Integrations
Change Triggers
Automatically trigger pentests when infrastructure changes are detected.
Change triggers watch for changes in your infrastructure and automatically launch pentests when something changes — ensuring continuous security coverage.
Supported providers
| Provider | Detection Method | Best For |
|---|---|---|
| ServiceNow | Polls change requests | Enterprise change management |
| GitHub | Webhook on push/deploy | Code deployments |
| GitLab | Webhook on push/deploy | Code deployments |
| Jira Service Management | Polls issues | IT service changes |
| Generic Webhook | Receives any JSON payload | Custom CI/CD pipelines |
Setting up a change trigger
- Go to Settings > Change Triggers
- Click New Trigger
- Select a provider
- Configure the connection details
- Set the poll interval (5 min, 15 min, 30 min, or 1 hour) for polling-based providers
- Enable the trigger
ServiceNow advanced filtering
For ServiceNow, you can filter which changes trigger pentests:
- Table: Change Requests, Incidents, or Problems
- Change types: Normal, Emergency, Standard
- Minimum priority: 1 (Critical) through 4 (All)
- Categories and assignment groups: Comma-separated lists
- Configuration items: Filter by specific CIs
- Custom SYSPARM query: Advanced ServiceNow query for fine-grained control
Webhook-based providers
For GitHub, GitLab, and Generic Webhook:
- CodeWall provides a webhook URL
- Configure your platform to send events to that URL
- Optionally set a webhook secret for signature verification
- CodeWall triggers a pentest when it receives a matching event
How it works
When a change is detected:
- The trigger evaluates the change against your filters
- If it matches, CodeWall launches a pentest using the associated test configuration
- The test runs like any other pentest, producing findings and reports
- Results are linked to the triggering change for traceability