Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.iru.com/llms.txt

Use this file to discover all available pages before exploring further.

About Semgrep

Iru calls Semgrep’s Web API for findings, projects, and policies. Tokens must include the Web API scope - Agent/CI-only tokens return 404s on web endpoints. Team or Enterprise tier is typically required for API access.

How it works

Authorization: Bearer YOUR_API_TOKEN
DetailValue
CategoryApplication security
AuthenticationBearer (Web API scope)
Official references: Tokens, Web API scope, API reference.

Prerequisites

  • Admin or Owner on the Semgrep org.

Connect Semgrep to Iru

Semgrep

1

Create a token

SettingsTokensAPI tokensCreate → name it → enable Web API scope → save → copy secret once.

Iru Compliance

1

Open Sources

In Iru Compliance, on the left navigation bar, expand Compliance and select Sources.
Left navigation: Compliance expanded, Sources selected
2

Turn on Semgrep

Find Semgrep (use Category or Search by name or description). On that card, turn on the toggle. A browser tab or window may open for the connector wizard.
3

Paste the API token

Paste the Bearer token when prompted.
4

Confirm the source is Active

Submit until the Semgrep card shows Active.

Troubleshooting

Check pop-up blocker settings for the Iru site and try again.
Recreate token with Web API scope.
Upgrade to a tier that includes API access.

See also