Skip to content

Getting Started

Get your first API security scan running in under five minutes.

  1. Install VulnAPI — Download a pre-built binary for Linux, macOS, Windows, or run via Docker.

  2. Run your first scan — Use vulnapi scan curl or point VulnAPI at your OpenAPI spec.

  3. Read the report — Understand the OPERATION / RISK LEVEL / CVSS / OWASP / VULNERABILITY columns and what each finding means.

  4. Automate in CI/CD — Add the VulnAPI GitHub Action to your workflow so every PR is scanned automatically.