GitHub - snyk/snyk-docker-plugin at 1f03bade773013c1c724a2f5613d39512b06c622

99 Branches 370 Tags

Name	Name	Last commit message	Last commit date
Latest commit tommyknows fix: No HTTP_PROXY when connecting to Docker socket Oct 12, 2022 1f03bad · Oct 12, 2022 History 938 Commits
.circleci	.circleci	chore: bump windows executor	Sep 18, 2022
.github	.github	chore: update release branch to main	Apr 13, 2022
lib	lib	fix: No HTTP_PROXY when connecting to Docker socket	Oct 12, 2022
scripts	scripts	chore: script to run app-vuln scans to check performance	Aug 23, 2021
test	test	test: add test for Go binary without PCLN table	Sep 28, 2022
.commitlintrc.json	.commitlintrc.json	chore: commit lint	Jun 22, 2022
.gitignore	.gitignore	feat: support trimmed, stripped and CGo binaries	Sep 6, 2022
.npmignore	.npmignore	chore: Remove unused lint configs	May 23, 2019
.npmrc	.npmrc	chore: Remove lockfile	May 31, 2019
.nvmrc	.nvmrc	feat: Update node runtime to 14	Sep 20, 2021
.prettierrc	.prettierrc	chore: update linting	May 23, 2019
.snyk	.snyk	feat: Intial commit	Mar 1, 2018
Contributor-Agreement.md	Contributor-Agreement.md	chore: contribution agreement	Aug 5, 2018
LICENSE	LICENSE	feat: Intial commit	Mar 1, 2018
README.md	README.md	docs: fix type in README	Oct 18, 2021
appveyor.yml	appveyor.yml	feat: support Node version >= 8	Jul 9, 2020
jest.config.js	jest.config.js	feat: Improve output for Dockerfile instructions	Nov 22, 2021
package.json	package.json	build(prettier): update prettier	Aug 31, 2022
tsconfig.json	tsconfig.json	fix: upgrade typescript dependency	May 15, 2022
tslint.json	tslint.json	fix: skip CGo binaries without PCLNTable	Sep 14, 2022

Repository files navigation

Snyk helps you find, fix and monitor for known vulnerabilities in your dependencies, both on an ad hoc basis and as part of your CI (Build) system.

ℹ️ This repository is only a plugin to be used with the Snyk CLI tool. To use this plugin to test and fix vulnerabilities in your project, install the Snyk CLI tool first. Head over to snyk.io to get started.

Snyk Docker CLI Plugin

This plugin provides dependency metadata for Docker images.

Supported functionality

Package managers:

rpm, apk, deb

Operating systems:

Debian, Red Hat, Alpine, Oracle, CentOS, SLES, OpenSUSE, Amazon Linux, vanilla Linux
Distroless and scratch images

Platforms:

Linux: ARM, AMD, PPC, MIPS, s390x

Image protocols:

Docker archive, OCI archive
pulling images from a Docker socket
pulling from container registries (with support for username and password authentication)

Applications:

Node (npm, yarn)
Java (jar files)
detecting package manager manifests (Python, Ruby)

Others:

Dockerfile analysis
identifying Node and Java binaries installed outside the package manager
running on Windows (not the same as scanning Windows containers)
collecting the rootFs hashes for base image detection and recommendation

Tests

Refer to test/README.md for running and writing tests.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Snyk Docker CLI Plugin

Supported functionality

Tests

About

Releases 366

Packages

Used by 13.5k

Contributors 61

Languages

License

snyk/snyk-docker-plugin

Folders and files

Latest commit

History

Repository files navigation

Snyk Docker CLI Plugin

Supported functionality

Tests

About

Resources

License

Stars

Watchers

Forks

Releases 366

Packages 0

Used by 13.5k

Contributors 61

Languages

Packages