Get up and running with Corridor in a few quick steps. This assumes you have a Corridor account (sign up at app.corridor.dev) and access to the code repository you want to secure.
Prerequisites
- A Corridor account (sign up)
- A supported IDE or AI coding tool (VS Code, Cursor, Claude Code, Windsurf, Factory, Devin, or any MCP-compatible tool)
- A GitHub repository to connect
Step 1: Connect GitHub
In the Corridor web app, you’ll be prompted to connect your GitHub account or organization. Authorize the Corridor GitHub App with the necessary permissions.
Authorize GitHub
Click Connect GitHub and authorize the Corridor GitHub App. You can grant access to All repositories or select specific repos—be sure to include any repos you want Corridor to monitor.
Corridor needs read access to code and permission to write PR comments to perform reviews.
Step 2: Add a project (repository)
Once GitHub is connected, add a repository as a Project in Corridor.
Go to Projects
In the Corridor dashboard, go to Projects and click New Project.
Select repository
Select the repo from the list to bring it under Corridor’s protection. You must add a project before Corridor can analyze its code—simply connecting GitHub isn’t enough.
Auto-generated guardrails
After adding, Corridor will scan the codebase and automatically generate initial security guardrails tailored to that project.
Step 3: Install the IDE extension
To get real-time guardrails while coding, install Corridor’s integration for your development environment:
VS Code / Cursor
Claude Code
Factory
Devin
Windsurf
Custom MCP
- Open VS Code or Cursor
- Go to the Extensions panel (
Cmd+Shift+X or Ctrl+Shift+X)
- Search for “Corridor”
- Click Install
- Reload your editor when prompted
After installation, you’ll see the Corridor icon in your sidebar. See VS Code / Cursor setup for detailed instructions.If you use the Claude Code CLI or other supported AI dev tools, configure them to use Corridor’s MCP server.
- First install the Corridor extension in VS Code or Cursor (see above)
- Sign in to your Corridor account
- The extension automatically configures Claude Code’s MCP settings
See Claude Code setup for detailed instructions. Integrate Corridor with Factory’s AI Droid agents via MCP.
- Generate a Corridor API token in your Corridor settings
- Add Corridor as an MCP server in Factory:
droid mcp add --type http corridor https://app.corridor.dev/api/mcp --header "Authorization: Bearer XXXX"
XXXX with your Corridor API token.
- Update your
AGENTS.md to include Corridor’s prompt so the Droid always calls Corridor when generating code
See Factory setup for detailed instructions. Integrate Corridor with Devin via MCP.
- Generate a Corridor API token at app.corridor.dev/settings
- In Devin, go to Organization settings → MCP Marketplace and add Corridor
- Add your token in the Authorization Header field
- Add new knowledge pinned to all repositories with a prompt instructing Devin to always call Corridor when generating code
See Devin setup for detailed instructions. Integrate Corridor with Windsurf via the extension or MCP.Option 1: Extension (Recommended)
- Open the Extension Marketplace in Windsurf
- Search for “Corridor” and install the extension
- Log in and authenticate with your Corridor account
Option 2: MCP Marketplace
- Generate a Corridor API token in your Corridor settings
- Add Corridor from Windsurf’s MCP Marketplace using your token
Integrate Corridor with any MCP-compatible tool.
- Generate a Corridor API token in your Corridor settings
- Configure your MCP client with the following:
{
"mcpServers": {
"corridor": {
"transport": "http",
"url": "https://app.corridor.dev/api/mcp?token={generated_token}"
}
}
}
{generated_token} with your Corridor API token.
See Custom MCP setup for detailed instructions. Step 4: (Optional) Invite team members
If you’re on a Team or Enterprise plan, you can invite colleagues to join your Corridor workspace so they can benefit from the same guardrails and visibility.
Open Team Settings
Go to Team Settings → Members.
Invite members
Click Invite Member, enter their email, and select a role.
You’re all set
That’s it—Corridor is now set up! From this point on:
- In the IDE: Your AI assistant (e.g. Cursor or Claude Code) will consult Corridor’s guardrails as you generate code, stopping insecure suggestions
- For Pull Requests: Corridor will automatically review new PRs on your connected project. You’ll see comments or checks on the PR if any vulnerabilities are found
- Dashboard: You can monitor findings and adjust settings via the Corridor Dashboard
You’ve successfully onboarded Corridor to your project—secure coding can now happen in real-time without breaking your flow.
Next steps
