vulnnode

Vulnerable quotes API Node.js project for Snyk CLI demo

Set up

Install dependencies

npm install

Start app

npm start

App will be started on port 3000.

Create and start docker container

docker compose up --detach app

App will be available on port 4000.

Create kubernetes resource

kubectl create -f kube.yml

App will be available on port 5000.

Test Project

Default Test

snyk test

JSON output: /reports/default_test.json

GET /: Fetch all quotes
GET /random: Fetch random quote

Test Container

snyk container test vulnnode

JSON output: /reports/container_test.json

Test IaC (Infrastructure as Code)

snyk iac test kube.yml

JSON output: /reports/iac_test.json

Misc

Monitor Project

snyk monitor --file=package.json  --project-name=vulnnode --org=myorg

Ignore Vulnerability

snyk ignore --id=SNYK-JS-LODASH-1018905 --expiry=2023-07-27 --reason="Not really severe"

Check Output here: /reports/.snyk

Output test to JSON file

snyk <cmd> --json-file-output=./path/to/file.json

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
reports		reports
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
docker-compose.yml		docker-compose.yml
dockerfile		dockerfile
kube.yml		kube.yml
package-lock.json		package-lock.json
package.json		package.json
quotes.json		quotes.json
server.js		server.js

License

IamGideonIdoko/vulnnode

Folders and files

Latest commit

History

Repository files navigation