Integrate the CycloneDX Ruby gem with Vulnetix. Generate a CycloneDX SBOM from your Ruby Bundler project and upload to Vulnetix.

CLI toolCycloneDX

Install & scan

$ gem install cyclonedx-ruby
$ cyclonedx-ruby --path . --output bom.json --format JSON

Run CycloneDX Ruby Gem in CI

Scan on every push and upload the results to Vulnetix:

- name: Set up Ruby
  uses: ruby/setup-ruby@v1
  with:
    ruby-version: '3.3'
    bundler-cache: true

- name: Install CycloneDX Ruby gem
  run: gem install cyclonedx-ruby

- name: Generate CycloneDX SBOM
  run: cyclonedx-ruby --path . --output bom.json --format JSON

- name: Upload to Vulnetix
  run: vulnetix upload --file bom.json

Centralise CycloneDX Ruby Gem results in Vulnetix

Upload CycloneDX Ruby Gem CycloneDX output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.

CycloneDX Ruby Gem documentation ↗ · Source repository ↗

Wire CycloneDX Ruby Gem into your CI/CD pipeline →

CycloneDX Ruby Gem Integration Guide

Install & scan

Run CycloneDX Ruby Gem in CI

Centralise CycloneDX Ruby Gem results in Vulnetix