Integrate with Agile Central

Integrate Agile Central with Contrast to automatically track vulnerabilities in your applications.


  • Agile Central account URL

  • Permission to create issues in the target project

  • A running Agile Central instance accessible via HTTP to Contrast

  • A project to associate the application instrumented by Contrast


To connect with Agile Central:

  1. Go to Organization settings > Integrations in the user menu.

  2. Click Connect in the Agile Central row.

  3. In the Connect with Agile Central form, add the name for the bugtracker entry, as well as the URL and API Key in the given fields. The Agile Central URL must be accessible from Contrast instance being configured.


    To find your Agile Central API key, log in to the Agile Central Application manager, and go to the API Keys tab. Contrast saves the username, password and Agile Central URL entered in your configuration as a set of credentials.

  4. Once you complete the fields, click the button to Test connection. The test verifies that Contrast can reach the Agile Central instance and that the specified user can log in.

  5. Once connected, select the Applications that you want to be available to this integration.

  6. Choose a Project Name and Owner from the drop-down menus.

  7. In the Default Priority section, use the drop-down menus to choose a priority level for each vulnerability severity.

  8. Choose the Environment for which you want to generate tickets.

  9. Choose a Defect State.

  10. Add a name that the tickets are Submitted By.


While none of these configuration fields are required, Agile Central may populate tickets with their own default values for any fields you leave blank.

To add another integration once you're connected in Contrast, click Add Configuration in the Agile Central row.

Create tickets automatically

To automatically create tickets for newly discovered vulnerabilities, check the designated box in the configuration form. In the multiselect field that appears, choose the Rules and Severity levels of the vulnerabilities for which you want to generate tickets.


This selection doesn't generate tickets retroactively.