# Step-by-Step Setup Guide This guide walks you through the initial account setup, token generation, and connecting your first project to Seal Security. ## Account Creation & Token Generation Follow these steps to access the platform and prepare your environment. If you already have a token, you can skip to the next section. 1. **Access the Invite:** Click on the **Sign in >** button in the Seal Security invite email you received. 2. **Log In:** Log in to the platform using your password or social login credentials. 3. **Start Onboarding:** We're starting the onboarding flow. Click **Next >** to begin. 4. **Generate Token:** First, you must generate a token to Seal's artifact server. This allows you to download our sealed versions.\ ![Generate Token](/files/PavZ4q5NrXJse1vkrR0Y) 1. **Generate:** Click on **Generate token**. 2. **Copy:** Copy the newly generated token using the copy icon at the right of the text box. > **Important:** You will need this token later. While it should eventually be saved in a secure location (like a password manager or secret store), copy it now for immediate use in the next steps. 3. **Continue:** Click **Next >**. 5. Click **Maybe later** to skip the GitHub integration. 6. **View Protection page:** You will land on the Protection screen. * **Status:** Since no projects are connected yet, we are not showing any results. * **Next Step:** We are now going to populate this data using the CLI. ![Empty Protection page](/files/Fgf0cjrcjNzbEzFu4thb) ## Integrate the Seal CLI To start fixing vulnerabilities (and populate the Protection page), you must integrate the CLI into your build pipeline. **Important Configuration:** For all integration methods, you must ensure the following environment variables are set: * `SEAL_TOKEN`: The token you generated earlier. * `SEAL_PROJECT`: The ID of your project on the Seal platform (e.g., "my-first-project"). Identify the location of your build pipeline. Typically, this is a `Dockerfile` in your repository. Identify the final stage of the Dockerfile. Typically it is after the last `FROM` instruction. Add the seal fix command to the end of the final stage of the Dockerfile: ```bash ENV SEAL_TOKEN=${SEAL_TOKEN} # Notice, that for a secure setup we advice using Build secrets - https://docs.gitlab.com/ee/ci/build_secret/ ADD --chmod=755 https://github.com/seal-community/cli/releases/download/latest/seal-linux-amd64-latest seal ENV SEAL_PROJECT="my-first-project" # Ox integration ENV SEAL_OX_URL="https://api.cloud.ox.security/api/apollo-gateway" ENV SEAL_OX_TOKEN=${OX_TOKEN} ENV SEAL_OX_APPLICATION=${OX_APPLICATION} ENV SEAL_OX_EXCLUDE_WHEN_HIGH_CRITICAL_FIXED="true" RUN ./seal fix os --mode all ``` ## Sealing a package Once you have integrated the CLI into your pipeline, follow these steps to see the results. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.sealsecurity.io/step-by-step-onboarding-guides/apt-no_scm-ox-container-cli_all-keep_names.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.