GitLab For self-hosted teams in regulated EU

Built for self-hosted GitLab.

Most agent platforms are GitHub-first with GitLab bolted on. vemlor flips it: GitLab is the primary surface. Webhook-driven MR loop, runners in your cluster, your Claude or Codex sub.

Open
fix(auth): stabilize session spec !847 mira requested to merge fix/auth-spec-flake into main 3 minutes ago
Pipeline #4812 passed for a1b2c3d on fix/auth-spec-flake
M
Mira Voss @mira · 3 minutes ago

@vemlor fix the flake in spec/auth_spec.rb

vemlor Bot · 3 minutes ago

On it. Runner eu-west-3 acquired, working on fix/auth-spec-flake.

vemlor Bot · 2 minutes ago

Force-pushed. 3 retries stabilized, timeout raised on the session helper. Pipeline green.

Merge Ready to merge!
GitLab
14.0+

Self-managed CE and EE. Real OAuth app, signed webhooks, native MR and pipeline objects.

Residency
EU

Frankfurt, Amsterdam, or your own cluster. Nothing leaves your VPC.

Setup
2min

From OAuth to the first answered @vemlor comment. No procurement gate for the trial.

Built into GitLab from day one.

Not a webhook hack. Real OAuth app, signed webhooks, native MR and pipeline objects, RBAC mirrored to your workspace.

One Helm chart, real OAuth.

Install on your cluster, point it at your GitLab. OAuth app and webhooks register themselves across every project.

bash
# install
$ helm install vemlor vemlor/vemlor \
    --set ingress.host=vemlor.acme.eu

# connect gitlab
$ vemlor connect gitlab https://gitlab.acme.eu
 OAuth application linked
 Webhooks installed on 47 projects

CI fails, vemlor opens the fix.

Pipeline fails on a protected branch, vemlor diagnoses it and opens a fresh MR. Pipeline turns green before you review.

Pipeline #4811 failed on main 6 minutes ago
vemlor opened !848 from fix/pipeline-4811 5 minutes ago
Pipeline #4812 passed · ready for review 3 minutes ago

Webhook loop

MR, note, and pipeline events. Per-workspace HMAC, idempotent on event id, dead-letter queue.

Runners in your cluster

Each run is a fresh ephemeral pod in your cluster. NetworkPolicy locks egress to your GitLab and your agent provider.

@vemlor in comments

Comment on any MR. Bot acks in seconds, runner spins, agent edits, force-push, you review.

RBAC mirrored

Project members, group access, protected branches respected. SAML SSO to your IdP, SCIM offboarding inside the hour.

Why GitLab teams pick vemlor.

What the GitHub-first crowd misses about how self-hosted GitLab shops operate.

GitHub-first tools vemlor
Primary surface GitHub, GitLab as afterthought GitLab-first, GitHub as peer
Tokens Metered, billed on top of your sub BYO Claude / Codex sub, flat platform price
Deployment SaaS-only Self-host or VPC, EU residency
SSO + audit log Enterprise tier Included

Put an agent behind every merge request.

One Helm chart, one OAuth handshake, your Claude or Codex sub. No procurement gate for the trial. The first MR opens today.