GitHub
Git hosting and code collaboration for organizations.
How Tolmo uses itConnected through a GitHub App install so Tolmo can map repositories, ownership, and code context into the graph and run analysis on every change.
Tolmo plugs into your source control, cloud accounts, infrastructure, monitoring, security tools, and identity, then builds a single live context graph of everything running in production. 49 integrations and counting.
Where your code lives. Tolmo reads repositories to understand what you ship and who owns it.
Git hosting and code collaboration for organizations.
How Tolmo uses itConnected through a GitHub App install so Tolmo can map repositories, ownership, and code context into the graph and run analysis on every change.
Self-managed or SaaS Git platform with built-in CI.
How Tolmo uses itScans your groups, projects, repositories, merge requests, and branches to bring source history and ownership into the graph.
Your production accounts. Tolmo reads configuration to see how infrastructure is actually deployed.
Amazon Web Services, the most widely used public cloud.
How Tolmo uses itAssumes a read-only IAM role to inventory accounts and surface misconfigurations across your AWS estate.
Google Cloud Platform compute, storage, and identity.
How Tolmo uses itUses service-account impersonation or a JSON key to read project configuration and posture across GCP.
Microsoft's public cloud across subscriptions and management groups.
How Tolmo uses itAuthorized with an app registration to read subscription or management-group scope and map Azure resources and their configuration.
Edge network, DNS, and web application firewall.
How Tolmo uses itReads DNS records, zones, firewall rules, and security configuration so your edge surface shows up alongside the rest of the stack.
Platforms and managed data services. Tolmo maps what is running and how it is exposed.
Container orchestration for clusters and workloads.
How Tolmo uses itReads cluster resources so workloads, namespaces, and their configuration join the graph.
Frontend cloud for deploying and hosting web apps.
How Tolmo uses itReads projects, deployments, and security configuration with a scoped personal access token.
Global app hosting that runs machines close to users.
How Tolmo uses itReads organizations, apps, machines, networking, secrets, and identity to map your Fly deployment posture.
Deployment platform for apps, services, and databases.
How Tolmo uses itReads workspaces, projects, services, and network exposure across your Railway account.
Managed hosting for services, databases, and cron jobs.
How Tolmo uses itReads deployed services, databases, and environment groups to bring your Render footprint into view.
Serverless Postgres with branching.
How Tolmo uses itReads organizations, projects, databases, endpoints, and network configuration across your Neon estate.
Postgres backend with auth, storage, and APIs.
How Tolmo uses itReads organizations, projects, and auth configuration to map your Supabase posture.
Managed MongoDB across clouds.
How Tolmo uses itReads organizations, projects, clusters, database users, network access, and encryption configuration.
Managed columnar analytics database.
How Tolmo uses itReads organizations, services, RBAC roles, and network configuration across your ClickHouse Cloud tenant.
Runtime for deploying AI agents, MCP servers, and sandboxes.
How Tolmo uses itReads workspaces, deployed agents, MCP servers, model gateways, sandboxes, and integration connections.
Where infrastructure is defined before it ships.
HashiCorp's managed Terraform with workspaces and policies.
How Tolmo uses itReads workspaces, variables, teams, and policies, and can ingest audit-trail activity to connect declared infrastructure to what is deployed.
The build pipeline between code and production.
Fast remote container and CI build service.
How Tolmo uses itMaps Depot projects, builds, registries, caches, and usage into the graph.
Signals about how production behaves. Tolmo folds them into the same context graph.
Metrics, traces, logs, and monitoring platform.
How Tolmo uses itAdds monitors, hosts, users, and APM services to the knowledge graph, and can manage monitors and register webhooks so alerts flow back to the platform.
Application error and performance monitoring.
How Tolmo uses itLinks Sentry projects and teams to the repositories and services they monitor.
Full-stack observability platform.
How Tolmo uses itAdds accounts, monitored entities, and alert configuration to the knowledge graph.
Log analytics and SIEM.
How Tolmo uses itQueries logs and metrics to enrich alerts and dashboards.
Tracing and evaluation for LLM applications (LangChain).
How Tolmo uses itTraces and evaluates LLM application activity to bring AI workloads into scope.
Existing security tools become another vantage point. Tolmo ingests their findings and cross-links them.
Developer security across code, dependencies, containers, and IaC.
How Tolmo uses itIngests Snyk findings as events and links the scanned repositories into the graph so ownership and remediation are one hop away.
Supply-chain protection for open-source dependencies.
How Tolmo uses itIngests supply-chain alerts (malware, typosquats, and risky dependencies) as findings and links scanned repositories into the graph.
Cloud security posture and vulnerability platform.
How Tolmo uses itReads asset inventory, cloud-configuration findings, issues, and vulnerabilities as a second vantage point alongside your connected cloud accounts.
Automated compliance and trust management.
How Tolmo uses itIngests aggregated resource inventory, findings, and compliance-test signals for posture and supply-chain context.
EDR, XDR, and device management. Tolmo reads inventory and detections to complete the picture of what is deployed.
Endpoint detection and response.
How Tolmo uses itReads endpoint detections, response data, and device inventory from Falcon.
Microsoft's enterprise EDR.
How Tolmo uses itReads device inventory, alerts, and vulnerabilities from Defender for Endpoint.
Autonomous endpoint protection.
How Tolmo uses itReads agent status, threats, and device inventory from SentinelOne.
Search-powered SIEM and endpoint security.
How Tolmo uses itReads endpoint alerts, rules, and agent status from Elastic Security.
Palo Alto Networks extended detection and response.
How Tolmo uses itReads endpoint data, incidents, and alerts from Cortex XDR.
VMware endpoint protection.
How Tolmo uses itReads device inventory, alerts, and policies from Carbon Black Cloud.
Open-source security monitoring and XDR.
How Tolmo uses itReads agent status, alerts, and vulnerability data from the Wazuh manager.
Cloud-managed endpoint protection.
How Tolmo uses itReads endpoint status, alerts, and policies from Sophos Central.
Cloud device and application management.
How Tolmo uses itReads device compliance, configuration profiles, and app inventory from Intune.
Apple device management for enterprises.
How Tolmo uses itReads macOS and iOS device inventory, compliance, and management data from Jamf Pro.
VMware unified endpoint management.
How Tolmo uses itReads device enrollment, compliance, and profiles from Workspace ONE UEM.
Apple device management and compliance.
How Tolmo uses itReads Apple device inventory and compliance status from Kandji.
Device management via the Google Admin SDK.
How Tolmo uses itLists and reads devices enrolled in Google Endpoint Management.
Open-source osquery-based device management.
How Tolmo uses itReads osquery host data, policies, and vulnerability information from Fleet.
SecOps cloud for detection and telemetry.
How Tolmo uses itReads sensor status, detections, and telemetry from LimaCharlie.
Who has access to what. Identity context grounds every ownership and blast-radius question.
Identity, groups, and admin policy for a Workspace tenant.
How Tolmo uses itReads identity, group membership, admin roles, OAuth tokens, SSO profiles, and security policies to map access and posture.
Where remediation work actually happens.
Issue tracking and project management for software teams.
How Tolmo uses itSyncs issues, projects, and teams, and can create tickets directly from findings so remediation lands in your existing workflow.
Atlassian issue and project tracking.
How Tolmo uses itCorrelates tickets, ownership, and remediation work against findings.
AI writes more of the code. Tolmo tracks that activity so you can see what agents shipped.
Anthropic's agentic coding tool.
How Tolmo uses itTracks Claude Code usage and coding-agent activity across repositories.
OpenAI's cloud coding agent.
How Tolmo uses itTracks Codex cloud sessions, code-review activity, and repository work.
AI-native code editor with agents.
How Tolmo uses itTracks Cursor coding-agent sessions, repository context, and code-review activity.
Where your team already works.
Team messaging and collaboration.
How Tolmo uses itDelivers security alerts, threat summaries, and scan results to any channel. Mention the bot to ask questions in place.
We add connectors constantly, and the platform reasons over anything with an API. Tell us what you run and we'll wire it up.