Integrate Vulnetix CLI into Codefresh pipelines for automated vulnerability scanning.
Add Vulnetix to Codefresh
Create codefresh.yml and run the Vulnetix CLI in your Codefresh pipeline. It collects SARIF, CycloneDX and SPDX artifacts automatically and uploads them for centralised vulnerability management:
version: "1.0"
stages:
- security
steps:
vulnetix_scan:
title: Vulnetix Security Scan
stage: security
image: golang:1.21
commands:
- go install github.com/vulnetix/cli@latest
- vulnetix scan
- vulnetix upload --file reports/results.sarif
Why run Vulnetix in Codefresh?
Every scan from every job lands in one queue, deduplicated and prioritised with EPSS, CISA KEV and Coalition ESS exploit intelligence — so your Codefresh pipeline gates merges on what is actually exploitable, not raw scanner noise.