Run Vulnetix CLI as Kubernetes Jobs with secret management, persistent volumes, and cloud-native security scanning workflows.
Add Vulnetix to Kubernetes
Create vulnetix-job.yaml and run the Vulnetix CLI in your Kubernetes pipeline. It collects SARIF, CycloneDX and SPDX artifacts automatically and uploads them for centralised vulnerability management:
apiVersion: batch/v1
kind: Job
metadata:
name: vulnetix-scan
spec:
template:
spec:
restartPolicy: Never
containers:
- name: vulnetix
image: vulnetix/vulnetix:latest
env:
- name: VULNETIX_ORG_ID
valueFrom:
secretKeyRef:
name: vulnetix-secrets
key: org-id
args: ["scan"]
volumeMounts:
- name: workspace
mountPath: /workspace
volumes:
- name: workspace
hostPath:
path: /path/to/project
Why run Vulnetix in Kubernetes?
Every scan from every job lands in one queue, deduplicated and prioritised with EPSS, CISA KEV and Coalition ESS exploit intelligence — so your Kubernetes pipeline gates merges on what is actually exploitable, not raw scanner noise.