Integrate GitHub Secret Scanning alerts with Vulnetix. Export secret scanning alerts via the GitHub REST API for centralised tracking and remediation.

SaaS platformJSON

Run GitHub Secret Scanning in CI

Scan on every push and upload the results to Vulnetix:

- name: Export GitHub Secret Scanning alerts
  run: |
    gh api "/repos/${{ github.repository }}/secret-scanning/alerts?state=open&per_page=100"       > secret-scanning-alerts.json
  env:
    GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

- name: Upload to Vulnetix
  run: vulnetix upload --file secret-scanning-alerts.json

Centralise GitHub Secret Scanning results in Vulnetix

Upload GitHub Secret Scanning JSON output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.

GitHub Secret Scanning documentation ↗

Wire GitHub Secret Scanning into your CI/CD pipeline →

GitHub Secret Scanning Integration Guide

Run GitHub Secret Scanning in CI

Centralise GitHub Secret Scanning results in Vulnetix