For use with Snyk CLI, generate the snyk ignore policy (set of ignore rules) dynamically based on a provided list of packages
run npm install -g snyk-transitive-ignore
, or
clone and run npm install -g
- add your package names to your file, for example
packages-to-ignore.list
(see example here) - run
snyk test --json | snyk-transitive-ignore -f packages-to-ignore.list
to generate the ignore list dynamically (into.snyk_ignore
file). Optionally specificy at what level to match on-l <level_number>
, default = 1 - run
snyk test --policy-path=.snyk_ignore
to test again with the Snyk ignore policy in place
Package names can be:
- Full name and version ( example: mongoose@5.7.5)
- Only package name ( example: mongoose)
- Begining of package name ( example: mong*)