Integrate Vulnetix CLI into Woodpecker CI pipelines for automated vulnerability scanning.
Add Vulnetix to Woodpecker CI
Create .woodpecker.yml and run the Vulnetix CLI in your Woodpecker CI pipeline. It collects SARIF, CycloneDX and SPDX artifacts automatically and uploads them for centralised vulnerability management:
pipeline:
vulnetix:
image: golang:1.21
secrets: [vulnetix_org_id]
commands:
- go install github.com/vulnetix/cli@latest
- vulnetix scan
- vulnetix upload --file reports/results.sarif
Why run Vulnetix in Woodpecker CI?
Every scan from every job lands in one queue, deduplicated and prioritised with EPSS, CISA KEV and Coalition ESS exploit intelligence — so your Woodpecker CI pipeline gates merges on what is actually exploitable, not raw scanner noise.