conceptintermediateReviewed May 18, 2026
White-box testing
Map repositories to a scope so the agent can use read-only source context.
Setup
- 1Install the GitHub integration.
- 2Sync repositories.
- 3Map the relevant repository to the scope.
- 4Optionally enable PR review for that mapped repository.
How it changes assessment
- The agent can read mapped repositories for the active scope.
- Findings can include code locations when evidence supports them.
- PR review automation can create diff-focused security runs.
- Repository access is read-only and scoped to mapped repositories.