08Integrations · 14 total

Connect anything in one click.

Every connection here activates with a single button. No JSON copy-paste, no wizard navigation, no long-lived secrets pasted into our app.

  • · Cloud providers activate via CloudFormation (AWS), ARM templates (Azure), and Cloud Shell tutorials (GCP).
  • · Source control + chat + paging use OAuth — you grant scoped read access, never a long-lived token.
  • · Monitoring tools push inbound HMAC-SHA256 + ES256 signed alerts; we never poll their API.
  • · Databases get a one-line GRANT-only DDL that creates a read-only role you control.
9 live4 beta1 planned

Cloud providers

AWS

livewrite · two-person gated

Read-only cross-account IAM role provisioned via CloudFormation.

ec2:Describe* · rds:* · s3:Get*/List* · iam read · cloudwatch metrics · cost explorer

Connect with CloudFormation (1 click)

Azure

livewrite · two-person gated

Reader-tier service principal provisioned via ARM template.

Reader role on selected subscription · Microsoft.Resources/* · Microsoft.Compute read

Deploy to Azure (1 click)

GCP

livewrite · two-person gated

Service account with roles/iam.securityReviewer provisioned via Cloud Shell.

roles/iam.securityReviewer · roles/viewer · scoped to selected project

Open in Cloud Shell (1 click)

Source control

GitHub

livewrite · two-person gated

OAuth app · reads workflow runs, repos, and commit metadata.

repo + workflow scopes (read-only) · PR open is opt-in

Connect with GitHub (OAuth)

GitLab

betawrite · two-person gated

OAuth app · same surface as GitHub.

read_api · read_repository · read_user

Connect with GitLab (OAuth) (coming soon)

Monitoring + observability

AWS CloudWatch

liveread-only

Inbound alerts via HMAC-signed webhooks.

Inbound only — platform never writes back.

Generate webhook URL + secret (coming soon)

Grafana

liveread-only

Inbound alerts via HMAC-signed webhooks.

Inbound only.

Generate webhook URL + secret (coming soon)

Dynatrace

betaread-only

Inbound alerts via HMAC-signed webhooks.

Inbound only.

Generate webhook URL + secret (coming soon)

Incidents + paging

Linear

betawrite · two-person gated

OAuth app · creates issues from incidents + findings.

issues:write · projects:read

Connect with Linear (OAuth) (coming soon)

PagerDuty

plannedwrite · auto

OAuth app · pages on-call when an incident is auto-promoted.

incidents.write · services.read

Communications

Slack

livewrite · auto

OAuth app · posts approval requests, incident alerts to a channel.

channels:read · chat:write · incoming-webhook

Connect with Slack (OAuth) (coming soon)

IDE + editor

VS Code

betawrite · two-person gated

Extension authenticates with the same vxlk_* API key as desktop.

Whatever scopes the API key carries.

Install the extension

Databases

Postgres

liveread-only

Read-only DB user · pg_monitor + pg_read_server_files.

SELECT on information_schema · pg_monitor · pg_read_server_files

Generate read-only DDL (coming soon)

MySQL

liveread-only

Read-only DB user · SELECT on information_schema.*.

SELECT on information_schema

Generate read-only DDL (coming soon)