Skip to main content
GitHub App Integration is available for free. See other integrations for more details
SafeDep Cloud provides a control and data aggregation service on top of security tools like vet. This guide will help you connect your vet instances to SafeDep Cloud for centralized policy management and reporting.

What You’ll Accomplish

Query by Risks

Find critical vulnerabilities across all your projects

Policy Violations

Monitor and track policy violations from all vet instances

Policy Management

Test and deploy policies across all vet deployments

Malware Analysis

Enhanced threat detection with cloud-powered analysis

Web Onboarding

1

Create Account

Navigate to app.safedep.io and sign up
2

Create Tenant

Complete onboarding and create your tenant, noting the Tenant Domain
3

Generate API Key

Create an API key for use with vet in your tenant settings
After completing onboarding, you should have:
  • Tenant Domain (e.g., your-company.safedep.io)
  • API Key for authentication
See supported integrations for more details on how to integrate with your SDLC.

Quick Onboarding with vet CLI

The easiest way to get started is using the vet cloud quickstart command:
1

Install vet

Ensure you have vet installed on your system
brew tap safedep/tap
brew install safedep/tap/vet
2

Run Quickstart

Execute the quickstart command and follow the prompts
vet cloud quickstart

Configure vet with SafeDep Cloud

Skip this section if you used the vet cloud quickstart command

Authentication Setup

Configure vet to authenticate with your SafeDep Cloud tenant: 
vet auth configure --tenant <tenant-domain>
You’ll be prompted to enter your API key securely.

Verify Authentication

Confirm that your vet instance can connect to SafeDep Cloud: 
vet auth verify

Sync Data to SafeDep Cloud

Enable the sync reporting module to send vet findings to SafeDep Cloud: 
vet scan -M /path/to/package-lock.json --report-sync \
  --report-sync-project my-project \
  --report-sync-project-version my-project-version
The example uses package-lock.json, but vet supports many package manifest formats and code analysis.

GitHub Actions Integration

Configure vet-action to sync with SafeDep Cloud:
1

Create Secrets

Add these GitHub Action Secrets:
  • SAFEDEP_CLOUD_API_KEY
  • SAFEDEP_CLOUD_TENANT_DOMAIN
2

Update Workflow

Modify your vet-action workflow:
- name: Run vet
  uses: safedep/vet-action@v1
  with:
    cloud: true
    cloud-key: ${{ secrets.SAFEDEP_CLOUD_API_KEY }}
    cloud-tenant: ${{ secrets.SAFEDEP_CLOUD_TENANT_DOMAIN }}

Query Your Data

SafeDep Cloud provides a SQL-like query interface for exploring aggregated data:
Authenticate first: vet cloud login --tenant <your-tenant-domain>

List All Projects

vet cloud query execute --sql "select projects.name, projects.version from projects"

Find Critical Vulnerabilities

vet cloud query execute --sql "
  select projects.name, packages.name, packages.version, vulnerabilities.cve_id
  from projects
  where projects.version = 'main' and vulnerabilities.risk = 'CRITICAL'
"

Identify Policy Violations

vet cloud query execute --sql "
  select projects.name, packages.name, packages.version, policy_violations.rule_name
  from projects
  where projects.version = 'main'
"

Export Results

Export query results to CSV: 
vet cloud query execute \
  --csv results.csv \
  --sql "select projects.name, projects.version from projects"

Explore the Schema

View the complete data schema to build custom queries: 
vet cloud query schema

Next Steps

Authentication Guide

Learn advanced authentication and access control

Malware Analysis

Enable enhanced threat detection capabilities

FAQ

Find answers to common questions

API Documentation

Integrate SafeDep Cloud with your systems