Integrations

Connect your toolchain

Stella Ops plugs into your existing registries, CI pipelines, deployment targets, and security feeds. Evidence flows through — your tools stay the same.

Container Registries

Watch for new digests and pull images for scanning and promotion.

Docker Hub

Public and private repositories with webhook triggers.

Harbor

Self-hosted OCI registry with replication and RBAC.

AWS ECR

Amazon Elastic Container Registry for AWS workloads.

Google GCR / Artifact Registry

Google Cloud container storage.

Azure ACR

Azure Container Registry with geo-replication.

Any OCI-compliant registry

Anything that speaks the OCI distribution spec works.

SCM & CI/CD

Trigger scans on push, gate releases on policy verdicts, and report results back.

GitHub

Webhooks, commit status checks, and Actions integration.

GitLab

Merge request gates and CI pipeline triggers.

Bitbucket

Webhook-driven scan triggers and PR status.

Jenkins

Pipeline step for scan-and-gate workflows.

GitHub Actions

Reusable workflow for digest-first releases.

GitLab CI

Template jobs for scanning and promotion gates.

Deployment Targets

Deploy gated releases to non-Kubernetes infrastructure.

Docker Compose

Multi-container applications on single hosts or clusters.

SSH (Linux/Unix)

Deployment to any SSH-reachable host.

WinRM (Windows)

Deployment to Windows servers via WinRM.

AWS ECS / Fargate

Managed container services on AWS.

HashiCorp Nomad

Multi-region job scheduling with Consul integration.

Scripted (.NET 10)

Custom deployment logic via .NET scripting engine.

Security Intelligence Sources

Vulnerability and advisory feeds used for reachability-aware scanning.

NVD + OSV + GHSA

Core vulnerability databases with daily sync.

CISA KEV

Known Exploited Vulnerabilities catalog for prioritization.

National CERTs

JVN (Japan), BDU (Russia), and other regional advisories.

Vendor feeds

First-party advisories from major OSS projects and vendors.

VEX Sources

Ingest and produce VEX statements for multi-issuer trust resolution.

OpenVEX

Community standard for vulnerability exploitability exchange.

CSAF 2.0

Common Security Advisory Framework for structured advisories.

Custom issuers

Vendor-published VEX with configurable trust weights.

Infrastructure

Secret management, service discovery, and runtime configuration.

HashiCorp Vault

Dynamic secrets, certificate management, and encryption as a service.

HashiCorp Consul

Service discovery and health-checking for deployment targets.

HSM / PKCS#11

Hardware security modules for sovereign key management.

Notification Channels

Get alerted on scan results, gate decisions, and deployment events.

Webhooks

Generic HTTP callbacks for custom integrations.

Email / SMTP

Digest summaries and gate-blocked notifications.

Plugin model

Write custom notification adapters via the extensibility API.

Ready to connect your toolchain?

Stella Ops works with what you already have. Start with a single registry and expand from there.

Request access Read docs