> ## Documentation Index
> Fetch the complete documentation index at: https://docs.secally.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Onboarding

> Install the GitHub App, choose monitored repos, and run your first scans.

<Tip>
  **Short on time?**
  Install SecAlly, toggle a repository to **Monitored**, open a PR, and you’ll see results immediately.
</Tip>

Follow these steps to start scanning pull requests and requesting full repository scans from GitHub.

<Steps>
  <Step>
    ## Step 1: Sign in with GitHub

    [Sign in to SecAlly](https://secally.com/auth/github) using your GitHub account.

    <Frame>
      <img src="https://mintcdn.com/secally/LD1ZSEMnsWaBnpcr/assets/github-login.png?fit=max&auto=format&n=LD1ZSEMnsWaBnpcr&q=85&s=d52c0cf339f51ef06df402b231f34724" alt="Sign-in to GitHub" style={{width: "500px", height: "auto"}} width="1276" height="1688" data-path="assets/github-login.png" />
    </Frame>

    <Note>
      If this is your first time signing in, you will be redirected to GitHub to install the SecAlly GitHub App for your organization.
    </Note>
  </Step>

  <Step>
    ## Step 2: Install the SecAlly GitHub App

    Install SecAlly for the GitHub organization that owns the repositories you want to scan.

    <Frame>
      <img src="https://mintcdn.com/secally/LD1ZSEMnsWaBnpcr/assets/github-select-org.png?fit=max&auto=format&n=LD1ZSEMnsWaBnpcr&q=85&s=c249fcaf31ff3e85c62fd0511f88a213" alt="Select org to install SecAlly GitHub App on" style={{width: "500px", height: "auto"}} width="1962" height="820" data-path="assets/github-select-org.png" />
    </Frame>

    Then, choose which repositories SecAlly can access. You can update this later from the GitHub App settings.

    <Frame>
      <img src="https://mintcdn.com/secally/LD1ZSEMnsWaBnpcr/assets/github-select-repos.png?fit=max&auto=format&n=LD1ZSEMnsWaBnpcr&q=85&s=0fae0c01b2b593dc233ec1cc82c1c9a4" alt="Select org to install SecAlly GitHub App on" style={{width: "500px", height: "auto"}} width="1566" height="1942" data-path="assets/github-select-repos.png" />
    </Frame>
  </Step>

  <Step>
    ## Step 3: Choose repositories to monitor

    1. Return to the [SecAlly dashboard](https://secally.com/app).
    2. Select your organization.
    3. Toggle **Monitored** on for the repositories you want SecAlly to scan.

    <Info>
      Once enabled, SecAlly will automatically scan pull requests and accept scan requests for that repository.
    </Info>

    <Frame>
      <img src="https://mintcdn.com/secally/LD1ZSEMnsWaBnpcr/assets/secally-org-monitored.png?fit=max&auto=format&n=LD1ZSEMnsWaBnpcr&q=85&s=54040bf2adce711ace018458a873db15" alt="Toggle monitored on for the repositories you want SecAlly to scan." style={{width: "500px", height: "auto"}} width="1652" height="1138" data-path="assets/secally-org-monitored.png" />
    </Frame>
  </Step>

  <Step>
    ## Step 4: Verify with a [PR scan](/scans/pr-scan)

    Open a pull request in a monitored repository. SecAlly will:

    * create a GitHub check run, and
    * post a PR review with findings, including inline comments.

    <Note>
      PR scans run automatically for monitored repositories.
    </Note>
  </Step>

  <Step>
    ## Step 5: Verify with a [full repository scan](/scans/full-scan)

    Open a new GitHub issue in a monitored repository and include

    ```
    @SecAllyApp scan repo
    ```

    in the title or description. SecAlly will respond in the issue thread with scan status and results.
  </Step>
</Steps>

## Common Issues

* **Repository doesn’t show up in SecAlly:** update the GitHub App installation to grant access to that repository, then refresh.
* **Scans don’t start:** confirm the repository is toggled **Monitored** and the organization has an active trial or subscription.
* **Full scan didn’t trigger:** SecAlly listens for newly opened issues; open a new issue that includes the trigger text.
