-
-
Notifications
You must be signed in to change notification settings - Fork 42
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Adds Snyk provider documentation
- Loading branch information
Showing
1 changed file
with
29 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,32 @@ | ||
![](../../img/providers/snyk.png) | ||
|
||
# Snyk | ||
|
||
Coming Soon | ||
In order to use `bomber` with Snyk you will need to be a Snyk customer. Access requires your Snyk API Token, which you can retrieve from the web interface or by running: | ||
|
||
``` | ||
snyk config get api | ||
``` | ||
|
||
Once you have your token you can run bomber like so: | ||
|
||
``` | ||
bomber scan --provider snyk --token xxx sbom.json | ||
``` | ||
|
||
Note rather than passing the API token explicitly, you can also set this as an environment variable, either as `SNYK_TOKEN` or the generic `BOMBER_PROVIDER_TOKEN`. | ||
|
||
|
||
## Supported ecosystems | ||
|
||
At this time, the Snyk provider supports the following ecosystems: | ||
|
||
* npm | ||
* Maven | ||
* CocoaPods | ||
* Composer | ||
* RubyGems | ||
* Nuget | ||
* PyPi | ||
* Hex | ||
* Cargo |