cli
cli copied to clipboard
Snyk CLI scans and monitors your projects for security vulnerabilities.
**Observation** - Using `snyk v1.1005.0` - Running snyk scan multiple times keeps giving different results - Some of the runs have multiple false positives including open high severity `SQL Injection`...
Hey Snyk Team, As part of my CI/CD, I'm trying to run `snyk test`. This is for a python project that uses poetry. ## This works just fine locally: ```...
- [X] Follows [CONTRIBUTING](https://github.com/snyk/snyk/blob/master/CONTRIBUTING.md) rules #### What does this PR do? See https://github.com/snyk/snyk-mvn-plugin/pull/137 Adding warning message to indicate when projects have a dep-graph that contains packages with unknown versions (like...
- `node -v`: v10.15.3 - `npm -v`: 6.4.1 - `snyk -v`: 1.164.1 ### Expected behaviour Python projects using Pipfile/Pipfile.lock work via the CLI, but are not correctly imported via GitHub....
This PR was automatically created by Snyk using the credentials of a real user.Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of...
This PR was automatically created by Snyk using the credentials of a real user.Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of...
Alert on failed release pipeline - when tests fail on release - to ensure we know if there's a broken test and CLI is not being released.
## Use case We have various environments, and those environments may have different versions of an application running. We would like to better know which environments have vulnerabilities in them....
- [x] Follows [CONTRIBUTING](https://github.com/snyk/snyk/blob/master/CONTRIBUTING.md) rules #### What does this PR do? #### Where should the reviewer start? #### How should this be manually tested? #### Any background context you want...
My project is open source and can be found here: https://github.com/recyclarr/recyclarr Here's the logs from my project import: https://app.snyk.io/org/recyclarr/import-log/latest In my case, I do not specify `` in my `*.csproj`...