Connecting the Seal platform to a GitHub repository enables it to automatically sync with your projects, detect vulnerable packages, and possibly open pull requests to replace vulnerable packages with fully-compatible sealed versions.

After you click Import from GitHub on the onboarding, you will jump to a GitHub screen:

In this screen you will be asked to select the relevant GitHub organization, and then decide whether to give the Seal app access to all its repositories or to select specific ones.

After you've selected which repositories you're giving access to, you'll return to the onboarding flow.

Adding projects

After you've configured the connection to GitHub, you'll need to connect to the relevant code projects. Each project maps to an individual dependency file, for example package-lock.json. You can choose which dependency files you want Seal to scan. Each dependency file will map to a separate project on the platform.

You can either choose from a list of automatically detected projects, or add your projects later manually by clicking on the New project button in the Projects tab.