Connect & track your GitLab activity directly in monday.com
Connect your GitLab SaaS or self-managed account and choose which private and public projects you want to connect to which monday.com board.
Sync your GitLab with monday.com items by manually adding unique IDs to your GitLab activities, or automate this process by creating branch, issue, or merge requests directly from an item view.
See status updates directly from the item view, and learn instantly if a merge request is merged, an issue is created, or resolved.
Stay on top of your projects, with our ready-made automation templates. For example, update an item's status to "Completed" when a GitLab issue is resolved, or to "In progress" when a new branch is created.
Enterprise Grade Privacy Standards
🔒 SOC 2 declaration
🔑 ISO 27701:2019 and ISO 27001:2022
📋 GDPR & CCPA standards
🛡️ HIPAA & NIS2 compliant
Have questions? Contact us here and we will be happy to help!
Read more on how to get started with GitLab for monday.com in our documentation.
Security & Compliance
Security
Does the developer periodically perform penetration testing?
Yes
Yes, A penetration test is performed each year by an external party for any of their apps.
Does the developer have a dedicated security and privacy point of contact for such issues or questions?
Yes
Yes, a dedicated service portal is available through any of their app's listing on the monday.com marketplace.
Does the app restrict redirects and forwards only to approved destinations, or show a warning when redirecting to potentially untrusted content?
Yes
Does the app protect against mass parameter assignment attacks?
Yes
Does the app perform encoding and sanitization on all user supplied parameters to protect against Cross-Site Scripting?
Yes
Does the developer protect all state-changing actions against Cross-Site Request Forgery (CSRF)?
Yes
Does the developer have mechanisms to notify monday.com in case of a security breach?
Yes
Whenever we find a security incident we follow these steps: 1. Notify internal security team 2. Investigate the threat, impact, scale, and root cause 3. Determine and notify any parties involved (like monday.com) 4. Fix the issue 5. Notify customers, and parties involved on the fix and steps towards the future to prevent the same from happening again.
Does this developer have a process for installing application-level updates and security patches for the service (such as software packages and databases)?
Yes
Application level updates and security patches are following the same process: 1. All changes are managed through version control. 2. The code gets reviewed via our peer review process. 3. Via an automated CI / CD pipeline it gets deployed to our test environment. 4. The changes get tested end to end by the QA team. 5. After approval, another automated CI / CD pipeline deploys to production.
Compliance
Is the app certified with the information security standard ISO/IEC 27001:2022?
Not answered
Is the app compliant with the Health Insurance Portability and Accountability Act (HIPAA)?
Yes
https://apps.avisi.com/trust
Is the app certified with System and Organization Controls (SOC 2 or SOC 3)?
Yes
https://apps.avisi.com/trust
Is the app compliant with the General Data Protection Regulation (GDPR)?
Yes
https://apps.avisi.com/trust
Data
Does the app send any data outside of monday.com? If yes, indicate whether the data is customer-submitted (e.g., board names, item names, doc content) or non-customer-submitted (e.g., account ID, board ID, user ID).
Not answered
Where does the app store logs data?
other
Google Cloud Logging
Where does the app store the app data?
DB
Google Cloud Firestore
Does the developer ensure application logs do not contain secrets or personally-identifiable information (PII)?
Yes
Is customer data segregated from the data of other customers (for example logically or physically)?
Yes
Yes, customer data is logically segregated.
Privacy
Does the developer enforce multi-factor authentication on employees access to systems which may process customer data?
Yes
Does the developer protect access to customer data based on the principle of least privilege?
Yes
Yes, access to production data is restricted to the on-call team. Nobody is permitted to look at customer data without asking for explicit permission from the customer of which we keep record via the support request filed by the customer. Access to resources is logged to an audit log containing a record of information including the identity of the accessor and the date and time.
Reviews
January 23, 2023
B: no self-hosted enterprise gitlab instances supported
Installation history
We have data for December 28, 2024 onwards only. Collected sometime after 00:00 UTC daily.
{
"id": 107,
"description": "<p>Connect your GitLab SaaS or self-managed account and choose which private and public projects you want to connect to which monday.com board.</p><p><br></p><p>Sync your GitLab with monday.com items by manually adding unique IDs to your GitLab activities, or automate this process by creating branch, issue, or merge requests directly from an item view.</p><p><br></p><p>See status updates directly from the item view, and learn instantly if a merge request is merged, an issue is created, or resolved.</p><p><br></p><p>Stay on top of your projects, with our ready-made automation templates. For example, update an item's status to \"Completed\" when a GitLab issue is resolved, or to \"In progress\" when a new branch is created.</p><p><br></p><p><strong>Enterprise Grade Privacy Standards</strong></p><p>🔒 SOC 2 declaration</p><p>🔑 ISO 27701:2019 and ISO 27001:2022</p><p>📋 GDPR & CCPA standards</p><p>🛡️ HIPAA & NIS2 compliant</p><p><br></p><p>Have questions? <a href=\"https://avisi-support.atlassian.net/servicedesk/customer/portal/61\" rel=\"noopener noreferrer\" target=\"_blank\">Contact us here</a> and we will be happy to help!</p><p><br></p><p>Read more on how to get started with <strong>GitLab for monday.com</strong> in <a href=\"https://docs.apps.avisi.com/gitlab\" rel=\"noopener noreferrer\" target=\"_blank\">our documentation</a><em>.</em></p>",
"short_description": "Connect & track your GitLab activity directly in monday.com",
"compliance_answers": [
{
"questionId": 18,
"logHostingProvider": "other",
"detailedAnswer": "Google Cloud Logging"
},
{
"questionId": 17,
"dataHostingProvider": "DB",
"detailedAnswer": "Google Cloud Firestore"
},
{
"questionId": 15,
"shortAnswer": true,
"detailedAnswer": "Yes, A penetration test is performed each year by an external party for any of their apps."
},
{
"questionId": 14,
"shortAnswer": true,
"detailedAnswer": "Yes, a dedicated service portal is available through any of their app's listing on the monday.com marketplace."
},
{
"questionId": 13,
"shortAnswer": true,
"detailedAnswer": "https://apps.avisi.com/trust"
},
{
"questionId": 12,
"shortAnswer": true,
"detailedAnswer": "https://apps.avisi.com/trust"
},
{
"questionId": 11,
"shortAnswer": true,
"detailedAnswer": "https://apps.avisi.com/trust"
},
{
"questionId": 10,
"shortAnswer": true,
"detailedAnswer": ""
},
{
"questionId": 9,
"shortAnswer": true,
"detailedAnswer": ""
},
{
"questionId": 8,
"shortAnswer": true,
"detailedAnswer": ""
},
{
"questionId": 7,
"shortAnswer": true,
"detailedAnswer": ""
},
{
"questionId": 6,
"shortAnswer": true,
"detailedAnswer": "Yes, access to production data is restricted to the on-call team. Nobody is permitted to look at customer data without asking for explicit permission from the customer of which we keep record via the support request filed by the customer. Access to resources is logged to an audit log containing a record of information including the identity of the accessor and the date and time."
},
{
"questionId": 5,
"shortAnswer": true,
"detailedAnswer": ""
},
{
"questionId": 4,
"shortAnswer": true,
"detailedAnswer": ""
},
{
"questionId": 3,
"shortAnswer": true,
"detailedAnswer": "Whenever we find a security incident we follow these steps:\n1. Notify internal security team\n2. Investigate the threat, impact, scale, and root cause\n3. Determine and notify any parties involved (like monday.com)\n4. Fix the issue\n5. Notify customers, and parties involved on the fix and steps towards the future to prevent the same from happening again."
},
{
"questionId": 2,
"shortAnswer": true,
"detailedAnswer": "Application level updates and security patches are following the same process:\n1. All changes are managed through version control.\n2. The code gets reviewed via our peer review process.\n3. Via an automated CI / CD pipeline it gets deployed to our test environment.\n4. The changes get tested end to end by the QA team.\n5. After approval, another automated CI / CD pipeline deploys to production."
},
{
"questionId": 1,
"shortAnswer": true,
"detailedAnswer": "Yes, customer data is logically segregated."
}
],
"badges_data": {
"pricing_data": "Free",
"acquisition_source": "Existing legacy",
"app_values": [
"Popular with Dev users"
],
"security": true
},
"data": {
"is_connector": true,
"terms_of_service_url": "https://docs.apps.avisi.com/avisi-apps-legal-monday.com/legal/end-user-license-agreement"
},
"keywords": "integration, collaboration,GitLab,connect Gitlab and monday.com,monday.com",
"thumbnail_url": "https://dapulse-res.cloudinary.com/image/upload/v1680078462/monday-apps-marketplace/Gitlab%20integration%20%28Avisi%29/v2/App_card_3.png",
"logo_url": "https://dapulse-res.cloudinary.com/image/upload/v1680164778/monday-apps-marketplace/Gitlab%20integration%20%28Avisi%29/v2/App_icon_transparant.png",
"feedback_url": "https://avisi-support.atlassian.net/servicedesk/customer/portal/61",
"privacy_policy_url": "https://docs.apps.avisi.com/avisi-apps-legal-monday.com/privacy-security/privacy-policy",
"external_pricing_url": null,
"featured": null,
"security": true,
"display_in_template_store": null,
"acquisition_source": "Existing legacy",
"terms_of_service_url": "https://docs.apps.avisi.com/avisi-apps-legal-monday.com/legal/end-user-license-agreement",
"label": null,
"app_values": [
"Popular with Dev users"
],
"security_info": null,
"gallery_assets": [
{
"url": "https://cdn.monday.com/marketplace/107/107_2024_3_15_8_54_37_6wa6tvy.png",
"type": "image"
},
{
"url": "https://cdn.monday.com/marketplace/107/107_2024_3_15_8_54_40_ze54w4ui.png",
"type": "image"
},
{
"url": "https://cdn.monday.com/marketplace/107/107_2024_3_15_8_54_46_gf7x87o.png",
"type": "image"
},
{
"url": "https://cdn.monday.com/marketplace/107/107_2024_3_15_8_54_53_68f8627.png",
"type": "image"
}
],
"pricing_data": "Free",
"marketplace_developer_id": 45,
"app_id": 21545,
"marketplace_category_ids": [
10000001,
10000000,
7
],
"name": "GitLab for monday.com",
"app_scope_str": "boards:read,boards:write,updates:write,webhooks:write,me:read,users:read",
"app_client_id": "73299f3b7eaa2dd1d5e76d1b82f2082a",
"app_color": {
"hsl": {
"h": 264.80769230769226,
"s": 0.8,
"l": 0.2549019607843137,
"a": 1
},
"hex": "#380d75",
"rgb": {
"r": 56,
"g": 13,
"b": 117,
"a": 1
},
"hsv": {
"h": 264.80769230769226,
"s": 0.888888888888889,
"v": 0.4588235294117647,
"a": 1
},
"oldHue": 276,
"source": "hex"
},
"created_at": "2021-03-10T09:41:27.000Z",
"updated_at": "2024-12-09T18:07:21.826Z",
"how_to_use_url": "https://avisi-apps.gitbook.io/gitlab/getting-started/installation",
"automation_app_id": null,
"plans": null,
"featured_for_categories_ids": [],
"pinned_for_categories_ids": [],
"pricing_model": null,
"app_type": null,
"display": null,
"is_connector": true,
"google_analytics_tag_id": null,
"app_live_version": {
"updated_at": "2025-06-17T14:29:38Z",
"id": 10471287
},
"is_solution": null,
"available_for_tiers": null,
"available_for_products": null
}
