Integrate Microsoft Template Analyzer with Vulnetix. Scan Azure ARM templates and Bicep files for security misconfigurations and export SARIF findings for upload to Vulnetix.
ARM Templates, BicepCLI toolSARIFJSON
Install & scan
$ dotnet tool install --global Microsoft.Azure.TemplateAnalyzer # Verify template-analyzer --version $ template-analyzer analyze-template template.json --output-file-format sarif --output-file analyzer-results.sarif
Run Template Analyzer in CI
Scan on every push and upload the results to Vulnetix:
- name: Install Template Analyzer run: dotnet tool install --global Microsoft.Azure.TemplateAnalyzer - name: Analyze ARM templates run: template-analyzer analyze-template template.json --output-file-format sarif --output-file results.sarif - name: Upload to Vulnetix run: vulnetix upload --file results.sarif
Centralise Template Analyzer results in Vulnetix
Upload Template Analyzer SARIF, JSON output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.