Integrating cyweb with the platform

Cyweb findings can be pushed directly to your Cybrium workspace. When executed through the platform, cyweb runs in an isolated environment with tenant-scoped credentials.

How the platform uses cyweb

User initiates a DAST scan from the workspace chat or scan page
The platform dispatches cyweb against the target
Cyweb scans and outputs structured findings
Results are ingested into the findings store
Findings appear in real time in the workspace

Running cyweb standalone with platform sync

# Scan and push findings to your workspace
cyweb scan https://target.com \
  --platform https://app.cybrium.ai \
  --token $CYBRIUM_API_TOKEN

CI/CD integration

Add cyweb to your pipeline to gate deployments on web vulnerability findings:

# GitHub Actions example
- name: Web vulnerability scan
  run: |
    cyweb scan $STAGING_URL --output results.sarif
    # Upload to GitHub Code Scanning
    gh api repos/$GITHUB_REPOSITORY/code-scanning/sarifs \
      -f "sarif=@results.sarif"

Docker

docker run --rm cyweb:latest \
  scan https://target.com --format json

How the platform uses cyweb​

Running cyweb standalone with platform sync​

CI/CD integration​

Docker​

How the platform uses cyweb

Running cyweb standalone with platform sync

CI/CD integration

Docker