> For the complete documentation index, see [llms.txt](https://docs.xygeni.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.xygeni.io/xygeni-products/anomaly-detection/xygeni-sensors/xygeni-sensor-for-gitlab.md). # Xygeni Sensor for GitLab The Xygeni Sensor for GitLab monitors activity in an Organization (or User) and its repositories. ### How it works The sensor works by registering [Audit Event Streaming for GitLab](https://docs.gitlab.com/ee/administration/audit_event_streaming/index.html), which will send HTTPS messages to the streaming endpoint URL for the Xygeni platform. See [Audit event streaming examples](https://docs.gitlab.com/ee/administration/audit_event_streaming/examples.html) for further information on the events and payloads sent from GitLab to Xygeni platform. {% hint style="info" %} **The Audit Event Streaming feature is only available in the Ultimate tier.** {% endhint %} {% hint style="info" %} The streaming URL is [`https://api.xygeni.io/gitlab/streaming`](https://api.xygeni.io/gitlab/streaming) for the Xygeni cloud platform.\ The streaming endpoint is secured with a shared secret and TLS, following the recommendations in [Verify event authenticity](https://docs.gitlab.com/ee/administration/audit_event_streaming/index.html#verify-event-authenticity). {% endhint %} ### Installation Audit Event Streaming should be set for each top-level group you require to monitor using Xygeni. In case of Gitlab local self-managed instances it will be set once per instance. #### Add a new HTTP destination * In Gitlab, follow instruction to setup a streaming destination as described at [Add new HTTP destination](https://docs.gitlab.com/ee/administration/audit_event_streaming/#add-a-new-http-destination) * As `Destination Name` write a description for that streaming * Set the `Destination URL` ().
#### Save Verification token at Xygeni * Once the destination is created, expand the stream to locate the verification token.
* Then copy the `Verification Token`, go to Xygeni 'Integrations Configuration' screen, and paste it at the 'Verification token' field, 'Sensors' section". ### Alerts Tracking You can navigate to the dashboard to keep track of all the Unusual Activity detected at the moment, ordered by time of exposure from most recent to less recent. Open [Anomalous Activity Summary](/xygeni-products/anomaly-detection/anomaly-detection-user-interface-guide.md). --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.xygeni.io/xygeni-products/anomaly-detection/xygeni-sensors/xygeni-sensor-for-gitlab.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.