snyk-dependency-extractor

Tool to extract dependencies from a Snyk group. Initial version, updates may come.

The tool uses 5 threads to process the organizations inside the group, and 4 threads for each org to process the deps. This way we can avoid slowing ourselves (mostly) by throttling on huge orgs.

Free software: GNU General Public License v3.0

Features

Extract all dependencies from a Snyk group into a csv in the local folder

Todo / Roadmap

Install

Use pip for install:

pip install snyk-depxtractor

Usage

export SNYK_TOKEN=xxxxxxx-xxxxxx-xxxx
sde dump-group-deps [tsv,json,parquet,all]

# all means tsv, json, parquet 🤓

If you want to setup for development:

# Install poetry using pipx
python -m pip install pipx
python -m pipx ensurepath
pipx install poetry

# Clone repository
git clone https://github.com/zsolt-halo/snyk-depxtractor.git
cd snyk-dependency-extractor/

$ # Install dependencies and hooks
$ poetry install
$ poetry run pre-commit install

Known Issues

Pokemon exception handling, we catch them all.

Will fix it eventually :)

Name		Name	Last commit message	Last commit date
Latest commit History 25 Commits
.github		.github
snyk_depxtractor		snyk_depxtractor
.editorconfig		.editorconfig
.flake8		.flake8
.gitignore		.gitignore
.isort.cfg		.isort.cfg
.mypy.ini		.mypy.ini
.pre-commit-config.yaml		.pre-commit-config.yaml
.pylintrc		.pylintrc
AUTHORS.md		AUTHORS.md
CONTRIBUTING.md		CONTRIBUTING.md
HISTORY.md		HISTORY.md
LICENSE		LICENSE
README.md		README.md
poetry.lock		poetry.lock
pyproject.toml		pyproject.toml

License

zsolt-halo/snyk-depxtractor

Folders and files

Latest commit

History

Repository files navigation

snyk-dependency-extractor

Features

Todo / Roadmap

Install

Usage

Known Issues

About

Resources

License

Stars

Watchers

Forks

Languages