Solutions
Solutions
Snyk
Docs Library
Blog
Partners
Home
Snyk Academy
Getting Started with Snyk
Snyk Open Source
Snyk Container
Partner Workshops
Amazon Web Services
Atlassian
CircleCI
Sign up for Snyk
Securing Kubernetes Workloads on AWS
Getting started
Create EKS cluster
CircleCI Configuration
config.yml
Testing the application
Application scanning
Container image scanning
Push image to registry
Deploy the application
Kubernetes manifests
CircleCI Project
Test deployment
Interpret scan results
Exploits
Conclusion
Docker
GitHub
Microsoft Azure
Red Hat
SpringOne Workshop
Integration Guide
IDE plugin
Snyk Connector
Powered by GitBook

Application scanning

Our next job begins by attaching the workspace and calling snyk/scan with a few parameters. We've made a few choices here such as setting fail-on-issues to false and setting our severity-threshold to high. 

  scan_app:
    <<: *defaults
    steps:
      - attach_workspace:
          at: ~/repo
      - snyk/scan:
          fail-on-issues: false
          monitor-on-build: true
          project: '${CIRCLE_PROJECT_REPONAME}/${CIRCLE_BRANCH}-app'
          severity-threshold: high
          token-variable: SNYK_TOKEN
          target-file: ./submodules/goof/package.json

A detailed list of all supported parameters is available in the Snyk orb documentation page.

Previous
Testing the application
Next
Container image scanning
Last updated 7 months ago