This thesis presents a practical framework for automating vulnerability assessment and remediation in cloud-native environments, with a strong focus on developer-centric workflows and integration within CI/CD pipelines. It investigates the challenges posed by fragmented vulnerability data, inconsistent tooling, and the lack of actionable remediation strategies in modern software supply chains. At the core of this research is Vulnbot, a modular and CI-integrated automation agent that orchestrates vulnerability detection, prioritization, and remediation. Vulnbot supports multiple ecosystems, interfaces with scanners like OSV-Scanner and Trivy, and automates dependency patching and pull request generation, streamlining remediation and reducing mean-time-to-remediation (MTTR). First, it establishes a foundation in vulnerability databases and their relevance in cloud-native security.