NewN-Day-BenchLearn more
winfunc
CI/CD

CI Integration

Security scanning embedded natively in your CI/CD pipeline.

Winfunc integrates directly into your CI/CD workflow with native support for GitHub Actions, GitLab CI, Jenkins, CircleCI, and Azure Pipelines. Every push and pull request is automatically scanned, with results delivered as inline PR comments, SARIF reports, or pipeline gates.

Key Capabilities

Native GitHub Actions integration with drop-in YAML workflow
GitLab CI pipeline component with merge request comments
Jenkins plugin with configurable scan thresholds and build gates
CircleCI Orb for seamless workflow integration
Azure Pipelines task with SARIF output for Security tab
Blocking and non-blocking scan modes — fail builds or report only
Incremental scanning — only analyze changed files for faster feedback
SARIF output compatible with GitHub Advanced Security and IDE integrations
Inline PR comments with finding details, severity, and fix suggestions
Custom severity thresholds — block on critical/high, warn on medium
Parallel scanning across multiple repositories and branches
Scan result caching for faster subsequent runs

Zero-Config Setup

Add a single YAML step to your workflow and you're scanning. No configuration files, no agent installation, no infrastructure to manage. Works out of the box.

PR-Level Feedback

Findings appear as inline PR comments exactly where the vulnerability exists. Developers see issues in their normal review flow — no context switching to a separate dashboard.

Build Gates

Configure blocking policies per severity level. Block merges on critical findings, warn on high, and report on medium. Policies are customizable per repository and branch.

Incremental Analysis

Only scan changed files and their dependency graph for pull requests. Full codebase scans run on main branch pushes. Get feedback in seconds, not minutes.

SARIF Integration

Standard SARIF output integrates with GitHub Code Scanning, VS Code, JetBrains IDEs, and any SARIF-compatible tool. View findings in your preferred environment.

Multi-Pipeline Support

Run winfunc across monorepos with parallel scanning. Each service or package gets its own scan context while sharing a unified findings dashboard.

Ready to secure your codebase?