Get Started
Core concepts
Repositories, scans, tests, and CLA coverage—the vocabulary used across the Superagent dashboard.
These terms appear throughout the dashboard and docs.
Repository
A GitHub repository connected through Integrations. Most features are scoped per repository: protection signals, red team runs, and CLA configuration.
GitHub Apps
Superagent uses GitHub Apps to receive repository events and publish checks:
- Superagent Security powers PR security scanning, contributor trust signals (identity, origin, PR spray, suspicious activity, and related risk indicators), and repository context for red-team reports.
- Open CLA powers CLA checks, contributor signing, and repository-level CLA enforcement.
Protection
Ongoing monitoring of repository risk:
- Pull requests — Scans and signals on open and merged PRs.
- Contributor trust — Assessment of contributor behavior and risk.
- Advisories — Incoming GitHub security advisories for connected repositories that need triage.
Red Teaming
Adversarial testing against agents (AI systems under test) and repositories (codebases or configs you attach tests to). Results help you find jailbreaks, policy gaps, and unsafe tool use before users do.
CLA (Contributor License Agreement)
Legal coverage for contributions:
- Templates — The CLA text and version you enforce.
- Repositories — Which repos require CLA coverage.
- Contributors — Who has signed and whether checks pass on pull requests.
Dashboard navigation
| Section | App path |
|---|---|
| Protection | /app/protection/* |
| Red team | /app/red-team/* |
| CLA | /app/governance/* |