Vulnetix
Try Vulnetix Request Demo
Tool integration

Security Code Scan Integration Guide

Roslyn-based .NET security analyzer

Get a Free API Key

Integrate Security Code Scan with Vulnetix. Add the Roslyn analyzer to your .NET project and produce SARIF output via MSBuild.

C# / .NETCLI toolSARIF

Install & scan

$ dotnet add package SecurityCodeScan.VS2019
$ dotnet build /p:ErrorLog=security-code-scan.sarif,version=2

Run Security Code Scan in CI

Scan on every push and upload the results to Vulnetix:

- name: Build with Security Code Scan
  run: dotnet build /p:ErrorLog=security-code-scan.sarif,version=2

- name: Upload to Vulnetix
  run: vulnetix upload --file security-code-scan.sarif

Centralise Security Code Scan results in Vulnetix

Upload Security Code Scan SARIF output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.

Security Code Scan documentation ↗  ·  Source repository ↗

Wire Security Code Scan into your CI/CD pipeline →