Snyk can provide remediation advice to help developers make good security decisions during the development process. Snyk can do this from the Snyk CLI or the Snyk UI. In our sample application goof we will configure the Snyk UI to display this information.
To get started select your container image from the projects page.
The Snyk UI informs users that it can provide remediation advice and offers a link to configure our container image. Select the settings area link in the purple box or the upper right corner to configure your container image with its Dockerfile.
Configure the location of your Dockerfile using the source control repository for the container image.
Select the source control repository
Select the location of the Dockerfile in your repository. The file typically lives at the root level and is called Dockerfile.
The Snyk UI will show its testing your container image.
Once the test is complete the Snyk UI shows the configured Dockerfile for your container image.
The Snyk UI shows remediation advice for your container image. The Snyk UI displays the base image, the number of vulnerabilities, and the severity of the vulnerabilities. It also offers minor, major, and alternative advice to let the developer make a better choice for the base image.