Use this checklist when moving existing Superagent Security GitHub App traffic from the legacy brin-github service to landing.

Compatibility requirements

• Reuse the existing production GitHub App credentials as SECURITY_GITHUB_APP_ID, SECURITY_GITHUB_APP_PRIVATE_KEY, and SECURITY_GITHUB_WEBHOOK_SECRET.
• Keep the webhook path /api/github/webhook on the new host, or proxy the old host/path to the new route during cutover.
• Keep check names unchanged: Security scan and Contributor trust.

User-facing navigation

After cutover, customers use the unified sidebar:

• Pull requests instead of Protection → Pull requests
• Repository instead of Protection → Repositories
• Findings instead of Protection → Advisories (for advisory triage)

Legacy URLs should continue to resolve via legacyActivePrefixes in app navigation.

Next steps

• Install GitHub Apps
• Troubleshooting