Skip to Content

Security & Compliance

Lynx Compliance - Northstar Connector

Pulls compliance evidence from Patrii Northstar - repository inventory, branch protection, signed-commit ratio, PR-review coverage, CODEOWNERS, secret-scanning alerts, CI workflows - over the Northstar API. Dogfood batch 1.

Talk to sales See pricing

lynx_compliance_connector_northstar · v19.0.1.0.0 · Premium

What this solves

Lynx Compliance - Northstar Connector

Compliance evidence pulled from Patrii Northstar - the source-control platform - so a customer running Northstar internally gets immediate auditor-grade evidence on source-code-management controls.

Source-code management is a top-of-list audit interview. Auditors ask: "who can push to main", "are commits signed", "is code reviewed before merge", "are secrets ever committed". This connector answers each mechanically. Authentication is a per-instance Northstar access token stored on the connector record; the default endpoint pre-fills from ir.config_parameter northstar_endpoint when the lynx_northstar_connector module is installed (so customers configure once across the platform).

Key Features

  • Northstar connector type - configure with the instance URL + a personal access token (read-only scopes are enough).

  • Ten resource pulls - repositories, branch protection rules, CODEOWNERS files, signed-commit percentages, code-review coverage, secret-scanning alerts, CI workflows, webhooks, org admin members, signed releases.

  • Pre-seeded collectors - five evidence collectors covering software inventory (ID.AM-02), change management (PR.PS-02), code-signing (PR.PS-01), privileged-user inventory (PR.AA-05), and CI configuration (A.8.9).

  • Reuses ``northstar.config`` - if lynx_northstar_connector is installed, the URL and admin token pre-fill from its existing configuration so admins set up Northstar once across the whole platform; the per-record fields are an override path, not a duplicate store.

  • Open-source forge support - the underlying API is the Forgejo / Gitea API, so any compatible self-hosted instance works as a drop-in alternative source.

Integrates With

  • lynx_compliance_connectors - registers under the connector framework.

  • lynx_compliance_evidence_collectors - shipped collectors use the standard schedule.

  • lynx_northstar_connector (optional, soft) - reuses the configured Northstar endpoint.

  • Northstar via the requests HTTP client.

Depends on

base lynx_compliance lynx_license_enforcer lynx_base lynx_compliance_evidence_collectors lynx_compliance_connectors lynx_compliance_certification

Try Lynx Compliance - Northstar Connector on your team.

Free trial, no credit card. Talk to sales when you're ready.

Start free trial Browse all modules