Support 3rd party vulnerabilityAlerts providers #29084
Closed
ArtyomGabeev
started this conversation in
Suggest an Idea
Replies: 1 comment 4 replies
-
Unfortunately no. Renovate is built/funded by Mend.io, which is a direct competitor to such alerting companies (especially Snyk). Although the Open Source Renovate project exists almost entirely independently of Mend.io commercial requirements, we definitely don't want to support direct competition. i.e. our competitor gets paid, but we do not. It's simply not possible to continue funding this project under such circumstances. This type of integration can be supported in Renovate Enterprise however, so feel free to reach out to Mend's sales org with your request if you're interested: https://www.mend.io/renovate/ |
Beta Was this translation helpful? Give feedback.
4 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Tell us more.
Right now vulnerabilityAlerts feature works only on github platform.
We use the provided API to find existing vulnerabilities in the repository.
I think the feature is great, but it's limited only for GitHub users.
Can we add support for 3rd party vulnerability scan tools?
I'm interested in one, based on snyk.io integration. We can use snyk.io provided rest api to build a list of VulnerabilityAlert objects.
If we are interested in, I would like to understand how to proceed:
Note:
I can contribute this change, if it's applicable.
Beta Was this translation helpful? Give feedback.
All reactions