Integrate Renovate with Vulnetix. Configure Renovate to create security update PRs on your repositories, enabling continuous patching of vulnerabilities detected by Vulnetix.
CLI toolJSON
Install & scan
$ # Run locally or in CI without global install npx renovate --help # Or use the Mend Renovate GitHub App (zero-config) # Install at: https://github.com/apps/renovate $ npx renovate --token $GITHUB_TOKEN --dry-run your-org/your-repo
Run Renovate in CI
Scan on every push and upload the results to Vulnetix:
name: Renovate
on:
schedule:
- cron: '0 3 * * *'
workflow_dispatch:
jobs:
renovate:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run Renovate
uses: renovatebot/github-action@v40
with:
token: ${{ secrets.RENOVATE_TOKEN }}
Centralise Renovate results in Vulnetix
Upload Renovate JSON output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.