Configuration

Enter your API keys and credentials. They are stored in-memory only and never persisted to disk.

Prerequisites

AWS IAM user with permissions for: CloudTrail, GuardDuty, S3, KMS, STS
All AWS services must be in the same region
Jira Cloud account with API token
OpenAI API key (GPT-4o recommended)
Neo4j instance (optional, for threat graph)

AWS Credentials

Access Key ID *

Secret Access Key *

Region *

Jira Configuration

Jira Base URL *

Jira Email *

Jira API Token *

Project Key

Issue Type ID

OpenAI Configuration

API Key *

Model

Neo4j Configuration

Optional — powers threat relationship graph visualization. Credentials are validated before saving.

Neo4j Aura (cloud)Skip (no graph)

Get a free Neo4j Aura instance at neo4j.com/cloud/aura-free. After creating, download the .env file — it contains your URI, username, and password. Newer Aura instances may use the instance ID as the username (not "neo4j").

Aura Connection URI *

Format: neo4j+s://xxx.databases.neo4j.io (from Aura console)

Username *

Check your Aura .env file — may be an instance ID like "d1c3fdd8"

Password *

Aura Project ID (optional — for direct Neo4j Browser redirect)

How to find your Project ID:

Go to console.neo4j.io and sign in
Click on your instance, then open the Query tab
Look at the URL in your browser — it will look like:
https://console.neo4j.io/projects/a1b2c3d4-e5f6-7890-abcd-ef1234567890/tools/query
Copy the highlighted UUID between /projects/ and /tools/

Tip: If auth fails, go to console.neo4j.io → your instance → "..." → Reset password.

OPA Security Policy

Generated Terraform code is validated against this Rego policy. Use the built-in default or upload your own.

Use Default PolicyUpload Custom Policy