Integrate Roslyn Analyzers with Vulnetix. Use the .NET SDK to run compiler-integrated analysis and produce SARIF output via MSBuild.
C# / .NETCLI toolSARIF
Install & scan
$ # Add the analyzer NuGet package dotnet add package Microsoft.CodeAnalysis.NetAnalyzers $ dotnet build /p:ErrorLog=roslyn.sarif,version=2
Run Roslyn Analyzers in CI
Scan on every push and upload the results to Vulnetix:
- name: Build with analysis run: dotnet build /p:ErrorLog=roslyn.sarif,version=2 - name: Upload to Vulnetix run: vulnetix upload --file roslyn.sarif
Centralise Roslyn Analyzers results in Vulnetix
Upload Roslyn Analyzers SARIF output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.