SafeDep Cloud provides a control and data aggregation service on top of security tools like vet. This guide will help you connect your vet instances to SafeDep Cloud for centralized policy management and reporting.

What You’ll Accomplish

Query by Risks

Find critical vulnerabilities across all your projects

Policy Violations

Monitor and track policy violations from all vet instances

Policy Management

Test and deploy policies across all vet deployments

Malware Analysis

Enhanced threat detection with cloud-powered analysis

Method 1: Quick Onboarding with vet CLI

The easiest way to get started is using the vet cloud quickstart command:

1

Install vet

Ensure you have vet installed on your system

brew tap safedep/tap
brew install safedep/tap/vet
2

Run Quickstart

Execute the quickstart command and follow the prompts

vet cloud quickstart

Method 2: Manual Web Onboarding

1

Create Account

Navigate to platform.safedep.io and sign up

2

Create Tenant

Complete onboarding and create your tenant, noting the Tenant Domain

3

Generate API Key

Create an API key for use with vet in your tenant settings

After completing onboarding, you should have:

  • Tenant Domain (e.g., your-company.safedep.io)
  • API Key for authentication

Configure vet with SafeDep Cloud

Skip this section if you used the vet cloud quickstart command

Authentication Setup

Configure vet to authenticate with your SafeDep Cloud tenant:

vet auth configure --tenant <tenant-domain>

You’ll be prompted to enter your API key securely.

Verify Authentication

Confirm that your vet instance can connect to SafeDep Cloud:

vet auth verify

Sync Data to SafeDep Cloud

Enable the sync reporting module to send vet findings to SafeDep Cloud:

vet scan -M /path/to/package-lock.json --report-sync \
  --report-sync-project my-project \
  --report-sync-project-version my-project-version

The example uses package-lock.json, but vet supports many package manifest formats and code analysis.

GitHub Actions Integration

Configure vet-action to sync with SafeDep Cloud:

1

Create Secrets

Add these GitHub Action Secrets:

  • SAFEDEP_CLOUD_API_KEY
  • SAFEDEP_CLOUD_TENANT_DOMAIN
2

Update Workflow

Modify your vet-action workflow:

- name: Run vet
  uses: safedep/vet-action@v1
  with:
    cloud: true
    cloud-key: ${{ secrets.SAFEDEP_CLOUD_API_KEY }}
    cloud-tenant: ${{ secrets.SAFEDEP_CLOUD_TENANT_DOMAIN }}

Query Your Data

SafeDep Cloud provides a SQL-like query interface for exploring aggregated data:

Authenticate first: vet cloud login --tenant <your-tenant-domain>

List All Projects

vet cloud query execute --sql "select projects.name, projects.version from projects"

Find Critical Vulnerabilities

vet cloud query execute --sql "
  select projects.name, packages.name, packages.version, vulnerabilities.cve_id 
  from projects
  where projects.version = 'main' and vulnerabilities.risk = 'CRITICAL'
"

Identify Policy Violations

vet cloud query execute --sql "
  select projects.name, packages.name, packages.version, policy_violations.rule_name 
  from projects
  where projects.version = 'main'
"

Export Results

Export query results to CSV:

vet cloud query execute \
  --csv results.csv \
  --sql "select projects.name, projects.version from projects"

Explore the Schema

View the complete data schema to build custom queries:

vet cloud query schema

Next Steps