Xygeni CLI Overview
Last updated
Last updated
Xygeni provides a command-line interface (CLI) for running the . The scanner can either run analysis commands separately, like detecting hardcoded secrets or misconfigurations, or run all the analyses at once. See for a complete list.
The is java program (see and ) that can be triggered directly from , from any , (Unix shell script, Windows batch, PowerShell script, etc.), from (pre-commit, pre-receive) or embedded into .
The scanner can be launched to scan a , a , a or group or repos and even a whole .
Scanner findings can be inspected/consumed in the , downloaded via Xygeni , in different formats (csv, json, etc) and also can be notified by creating (Jira, GitHub) or opening team (Slack)
The xygeni
command-line interface (CLI) is a tool for running scans on software projects, aimed at detecting issues related with the software supply-chain security.
The CLI provides different commands for specific purposes, and is the main tool for integrating Xygeni into DevOps platforms, like source versioning, build, CI/CD and cloud provisioning tools.
xygeni
is a general-purpose command that allows you to interact with all the different functionalities.
Basically, it allows to:
execute any specific scanners [ inventory
| deps
| malware
| ... ] See
authenticate against Xygeni platform (see )
specify the general mode of operation [ scan
| multi-scan
| org-scan
] (see )
ingest data from 3rd-pàrty scanners [ report-upload
] (see )
invoke utility functions [ util
] (see )
See for a full reference of available commands.