G-Lab Sentinel v3.1: Autonomous DevSecOps AI Agent

remove suspicious files and give to create secure path for api keys
security implementation and remove security breaches
optimised scores of scurity
Repository on web IDE
view link of all features in project gave by G-lab agent
live commit changes
Create merge request
security alert notification when deviation
12 files protected by G-lab sentinel v3.1
ensures works live process
G-lab sentinel v3.1 agent
ensuring features
make documentation high professional & secure

Inspiration

The inspiration for G-Lab Sentinel v3.1 came from a simple observation: in the fast-paced world of DevOps, security is often treated as an "afterthought." We noticed that even with top-tier tools, human error in managing secrets and policy compliance remains a massive risk. We wanted to build a "Digital Teammate"—not just a scanner—that could think, reason, and act autonomously to protect the repository before a single line of code reaches production.

What it does

G-Lab Sentinel is an autonomous DevSecOps AI Agent integrated into the GitLab ecosystem. It monitors the SDLC in real-time to:

Identify & Remediate: Automatically detects leaked secrets (API keys, tokens) and executes self-healing commits.

Hardening: Injects OWASP-compliant security headers and enforces best practices.

Policy Enforcement: Acts as a continuous security gate, ensuring every change meets a strict 100/100 security compliance score.

Autonomous Reasoning: Uses the GitLab Duo platform to understand context and provide remediation steps without manual intervention.

How we built it

We architected a Dual-Agent Framework using:

Platform: GitLab Duo Agent Platform for seamless interaction and repository context.

Security Engines: Deep integration with TruffleHog for secret detection and Semgrep/Bandit for static analysis.

Automation: Custom Python-based reasoning logic and automated CI/CD security pipelines.

Infrastructure: GitLab Ultimate features for advanced vulnerability management and hardened pipeline execution.

Challenges we ran into

One of the biggest hurdles was managing the Real-time Tool-Calling within a restricted security environment. Ensuring the agent had the right permissions to "Self-Heal" (create commits) while maintaining repository integrity was tough. We also navigated complex "Trial & Access" synchronization issues, which taught us how to build robust, independent security modules that work even under strict platform constraints.

Accomplishments that we're proud of

We are incredibly proud of achieving a verified 100/100 Security Audit Score through purely autonomous actions. Seeing the agent identify a vulnerability and successfully patch it via a self-healing commit in seconds—without human help—was our "Eureka" moment. We successfully built a project that truly embodies the "Security by Default" philosophy.

What we learned

This hackathon was a masterclass in Agentic AI. We learned how to bridge the gap between "LLM Chatting" and "Autonomous Action." We gained deep insights into GitLab’s DevSecOps lifecycle, the importance of automated policy enforcement, and how to design AI systems that are both powerful and safe for enterprise use.

What's next for G-Lab Sentinel v3.1: Autonomous DevSecOps AI Agent

The journey doesn't end here! We plan to:

Multi-Cloud Integration: Expand Sentinel’s reach to monitor multi-cloud environments.

Predictive Patching: Implement ML models to predict potential vulnerabilities before they are even coded.

Community Plugin: Release a "Sentinel-Lite" version for the open-source community to help students and small teams secure their projects for free.

Built With

ai
automation
bandit
bash
ci/cd
databases
devsecops
duo
gitlab
json
learning/ai
machine
markdown
python
rest
security
semgrep
trufflehog

Submitted to

GitLab AI Hackathon

Created by

My Contribution: From Architecture to Autonomous Deployment
As the lead developer for Team Cyberforce, my contribution spanned the entire lifecycle of G-Lab Sentinel v3.1, from the initial conceptualization to the final "Self-Healing" verification.

Contributions:

System Architecture: I designed the Dual-Agent Framework, specifically configuring the GitLab Duo Agent Platform to move beyond simple chat responses toward autonomous repository actions.

Autonomous Logic & Tooling: I authored the custom Python logic and Shell scripts (setup-triggers.sh) that enable the agent to interpret security vulnerabilities and execute self-healing commits via the create_commit tool.

Security Engineering: I was responsible for the end-to-end integration of TruffleHog, Semgrep, and Bandit, ensuring the project met a verified 100/100 security compliance score.

Platform Troubleshooting: I managed the complex "Trial & Credit" synchronization, navigating limited resource constraints to ensure the G-Lab Sentinel agent remained enabled and functional for the final submission.

Full-Stack Documentation: I produced the entire technical documentation, including the comprehensive SECURITY.md and the 178-frame video demonstration, showcasing the agent's real-time reasoning and remediation capabilities.

Vaishali Shripal
Python Full-Stack | Agentic Ai | Cyber-Resilience & AI Specialist | Wix Expert

Updates

Vaishali Shripal started this project — Mar 24, 2026 01:42 PM EDT

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.