CI/CD integration

Depot Integration Guide

Security scanning with Depot builds

Get a Free API Key

Integrate Vulnetix CLI into Depot build pipelines for fast, cached vulnerability scanning.

Add Vulnetix to Depot

Create depot.json and run the Vulnetix CLI in your Depot pipeline. It collects SARIF, CycloneDX and SPDX artifacts automatically and uploads them for centralised vulnerability management:

# In your CI pipeline using Depot
curl -fsSL https://raw.githubusercontent.com/vulnetix/cli/main/install.sh | sh
export PATH=$PATH:$HOME/.local/bin
vulnetix scan
vulnetix upload --file reports/results.sarif

Why run Vulnetix in Depot?

Every scan from every job lands in one queue, deduplicated and prioritised with EPSS, CISA KEV and Coalition ESS exploit intelligence — so your Depot pipeline gates merges on what is actually exploitable, not raw scanner noise.

All CI/CD integrations →  ·  All scanner integrations →