Overview
Aikido Security is an all-in-one application security platform that scans your code, containers, and cloud infrastructure for vulnerabilities. The Shortcut integration automatically creates Stories when security issues are detected, ensuring vulnerabilities are tracked and remediated through your normal development workflow.
Key Features
- Automatic Story Creation: New vulnerabilities create Shortcut Stories automatically
- Severity Mapping: Critical and high-severity findings are flagged appropriately
- Two-Way Sync: Story status updates reflect back in Aikido
- Context Linking: Stories include direct links to vulnerability details in Aikido
Setting Up the Integration
- Log into your Aikido Security dashboard
- Navigate to Integrations > Project Management
- Select Shortcut and click Connect
- Authorize Aikido to access your Shortcut workspace
- Configure which severity levels should create Stories
- Select the default Team and Workflow for security Stories
We recommend creating a dedicated “Security” label in Shortcut to easily filter and track security-related Stories.
Configuration Options
| Setting | Description |
|---|---|
| Severity Threshold | Minimum severity level that creates Stories (Critical, High, Medium, Low) |
| Default Team | Team that receives new security Stories |
| Default Workflow | Workflow state for new Stories |
| Auto-Complete | Automatically mark Stories as Done when vulnerabilities are resolved |
How It Works
- Aikido scans your codebase, dependencies, containers, or cloud infrastructure
- When a vulnerability meeting your threshold is detected, a Story is created in Shortcut
- The Story includes vulnerability details, affected components, and remediation guidance
- When the vulnerability is fixed and verified, the Story can be automatically completed