mito’s blog


[Snyk] Snyk CLIをインストールする







Snyk CLIのインストール

手順に沿って、Snyk CLIをインストールします。

Install or update the Snyk CLI - Snyk User Docs

$ curl -o snyk
$ chmod +x ./snyk
$ sudo mv ./snyk /usr/local/bin/



  1. WebページのAccount Settingsに移動します。
  2. General->Auth TokenのKEYをコピーします。
  3. CLIでsnyk auth <API_TOKEN>を実行します。

Authenticate the CLI with your account - Snyk User Docs

$ snyk auth APIトークン
Your account has been authenticated. Snyk is now ready to be used.

Snyk CLIでDockerイメージをスキャンする


$ snyk container test hello-world

Testing hello-world...

Organization:      mito-201
Package manager:   linux
Project name:      docker-image|hello-world
Docker image:      hello-world
Platform:          linux/amd64
Licenses:          enabled

✔ Tested hello-world for known issues, no vulnerable paths found.

Note that we do not currently have vulnerability data for your image. 

Snyk CLIのヘルプを表示


$ snyk --help
CLI commands help
  Snyk CLI scans and monitors your projects for security vulnerabilities and license issues.

  For more information visit the Snyk website

  For details see the CLI documentation

How to get started
  1. Authenticate by running snyk auth
  2. Test your local project with snyk test
  3. Get alerted for new vulnerabilities with snyk monitor

Available commands
  To learn more about each Snyk CLI command, use the --help option, for example, snyk auth --help or 
  snyk container --help

  snyk auth
    Authenticate Snyk CLI with a Snyk account.

  snyk test
    Test a project for open source vulnerabilities and license issues.

    Note: Use snyk test --unmanaged to scan all files for known open source dependencies (C/C++

  snyk monitor
    Snapshot and continuously monitor a project for open source vulnerabilities and license issues.

  snyk container
    Test container images for vulnerabilities.

  snyk iac
    Commands to find and manage security issues in Infrastructure as Code files.

  snyk code
    Find security issues using static code analysis.

  snyk log4shell
    Find Log4Shell vulnerability.

  snyk config
    Manage Snyk CLI configuration.

  snyk policy
    Display the .snyk policy for a package.

  snyk ignore
    Modify the .snyk policy to ignore stated issues.

  Use -d option to output the debug logs.

Configure the Snyk CLI
  You can use environment variables to configure the Snyk CLI and also set variables to configure the
  Snyk CLI to connect with the Snyk API. See Configure the Snyk CLI


[snyk-docs] Snyk CLI のインストールとアップデート (Install or update the Snyk CLI) - Qiita