Resources, examples, and tools organized by workflow stages to help you get the most out of the Finite State platform.
This repository is organized by workflow stages. This makes it easy to find examples and tools based on what you're trying to accomplish.
All scripts and tools in this repository require the following environment variables:
export FINITE_STATE_AUTH_TOKEN=<your_api_token>
export FINITE_STATE_DOMAIN=<your_fqdn>For example:
export FINITE_STATE_AUTH_TOKEN=7rsiswdbjzq264tpmpsugw3gapeq3hvyurb6iy7uwnojgfx5fcpq
export FINITE_STATE_DOMAIN=acme.finitestate.ioNote: The domain typically corresponds to your instance and often includes your company name (e.g., acme.finitestate.io).
Our content is organized into six main workflow stages:
- 01-onboarding-and-scanning - Resources and tools to help you scan devices, applications, and firmware
- 02-ci-cd-automation - Integrate scanning into your CI/CD pipelines
- 03-findings-triage-workflows - Triage, prioritize, and manage findings
- 04-remediation-and-fixes - Remediate vulnerabilities and implement fixes
- 05-reporting-and-compliance - Generate reports and maintain compliance
- 06-advanced-integrations-and-demos - Advanced use cases and end-to-end demonstrations
- shared/ - Shared API clients, common helpers, and utilities used across examples
We welcome contributions! Please see our Contributing Guide for details on how to submit pull requests, report issues, and suggest improvements.
Need help? Check out our Support Guide for information on getting assistance.
This project is licensed under the MIT License - see the LICENSE file for details.
This project adheres to a Code of Conduct. Please review CODE_OF_CONDUCT.md before participating.
For security-related issues, please see SECURITY.md.