• Stars
    star
    1
  • Language
    Python
  • License
    Apache License 2.0
  • Created 12 months ago
  • Updated 8 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

convert cyclone dx sbom to snyk depgraph and test or monitor it for open source issues

More Repositories

1

nodejs-goof

Super vulnerable todo list application
JavaScript
485
star
2

awesome-log4shell

An Awesome List of Log4Shell resources to help you stay informed and secure! πŸ”’
222
star
3

exploit-workshop

A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
156
star
4

java-goof

Java
89
star
5

pysnyk

A Python client for the Snyk API.
Python
87
star
6

snyk-cicd-integration-examples

Examples of integrating the Snyk CLI into a CI/CD system
Groovy
78
star
7

eslint-config-react-security

A ESLint configuration package for React developers who want to avoid security mistakes.
JavaScript
72
star
8

nodejs-docker-best-practices

Best practices to containerize Node.js web applications with Docker
JavaScript
64
star
9

kubernetes-goof

Kubernetes Stranger Danger
Shell
57
star
10

helm-snyk

Check images in your charts for vulnerabilities
TypeScript
41
star
11

snync

Mitigate security concerns of Dependency Confusion supply chain security risks
JavaScript
39
star
12

github-actions-scanner

Scans your Github Actions for security issues
JavaScript
34
star
13

modern-npm-package

An npm package for demonstration purposes using TypeScript to build for both the ECMAScript Module format (i.e. ESM or ES Module) and CommonJS Module format. It can be used in Node.js and browser applications.
TypeScript
32
star
14

docker-goof

A demo repo showcasing Snyk's Docker offering
Shell
27
star
15

nopp

Tiny helper to protect against Prototype Pollution vulnerabilities in your application regardless if they introduced in your own code or in 3rd-party code
JavaScript
25
star
16

snyk-scm-refresh

Keeps Snyk projects in sync with their associated Github repos
Python
24
star
17

php-goof

Snyk PHP Goof - A vulnerable PHP demo application
PHP
22
star
18

eslint-plugin-react-security

ESLint plugin with rules for finding security issues in React projects.
JavaScript
18
star
19

snyk-filter

Snyk filtering for SNYK CLI
JavaScript
15
star
20

snyk-tags-tool

CLI tool designed to manage tags and attributes at scale
Python
13
star
21

infrastructure-as-code-goof

HCL
12
star
22

snyk-deps-to-csv

retrieve all dependencies for all orgs in a group
JavaScript
10
star
23

snyk-bulk

Collection of docker entrypoints that facilitate snyk '--all-projects'-style bulk scanning
Java
9
star
24

snyk-chat-goof

Java
8
star
25

snyk-cloud-aws-importer

Tool to automate the importing of an AWS Organization in to Snyk Cloud
Python
7
star
26

netlify-plugin-snyk

A Snyk's netlify build plugin
JavaScript
7
star
27

rules_snyk

bazel (starlark) rules to test and monitor targets for vulnerabilities in external open source dependencies
Starlark
7
star
28

container-breaking-in-goof

Docker goof version of breaking into a container
JavaScript
6
star
29

snyk-user-sync-tool

sync user org memberships from an external source into Snyk
TypeScript
6
star
30

serverless-gcf-goof

A vulnerable Serverless application deployed on GCF
JavaScript
6
star
31

frontend-security-bingo

Frontend Security Bingo
Vue
6
star
32

snyk-api-client

A Node.js client for the Snyk API
TypeScript
6
star
33

pdfjs-vuln-demo

This project is intended to serve as a proof of concept to demonstrate exploiting the vulnerability in the PDF.js (pdfjs-dist) library reported in CVE-2024-4367
Astro
6
star
34

npq

safely install packages with npm or yarn by auditing them as part of your install process
JavaScript
4
star
35

serverless-spring-goof

Java
4
star
36

iac-scan-examples

Some basic Infrastructure-as-Code examples to accompany blogs
HCL
4
star
37

snyk-cr-monitor

monitor your on-premise Artifactory container images for vulnerabilities in Snyk
JavaScript
4
star
38

VSCode-Instant-markdown-vuln

This repo is to demonstrate the file traversal hack which uses a vulnerability in the Instant Markdown VSCode extension
Hack
4
star
39

snyk-request-manager

Queue based request manager to throttle and retry interaction with Snyk API endpoints
TypeScript
3
star
40

ctf-101

Python
3
star
41

snyk-repo-diff

Simple tool to generate a list of repositories that aren't in Snyk
Python
3
star
42

snyk-api-ts-client

Snyk API Typescript client generated from API Blueprints
TypeScript
3
star
43

snyk-issues-to-html

Export Snyk report issues to HTML
HTML
3
star
44

snyk-issues-to-csv

Python
3
star
45

node-ipc-goof

JavaScript
3
star
46

azure-repos-contributors-count

Count the number of contributing developers to an Azure Repos organization in the last 90 days
Python
3
star
47

CVE-2023-50164-POC

Java
3
star
48

snyk-scm-mapper

A way to ensure your GitHub Repos are monitored by Snyk
Python
3
star
49

terraform-goof

A demo repo showcasing Snyk's IAC offering for terraform
HCL
3
star
50

snyk-threadfix

Show open source vulnerabilities from Snyk in ThreadFix
Python
2
star
51

snyk-repo-issue-tracker

Python
2
star
52

bazel2snyk

test and monitor bazel targets for vulnerabilities in external open source dependencies, uses bazel query output
Python
2
star
53

snyk-bulk-action-scripts

Python scripts for bulk modification of Organization settings
Python
2
star
54

snyk-transitive-ignore

For Snyk CLI, ignore all issues introduced through a given set of dependencies
JavaScript
2
star
55

heroku-goof

CSS
2
star
56

iac-to-cloud-example-custom-rules

Snyk IaC to Cloud Custom Rules is in beta. This repository contains example custom rules to help you get started.
Open Policy Agent
2
star
57

snyk-scan.sh

monorepo utility wrapper for Snyk CLI
Shell
1
star
58

event-app-node-grpc

A demonstration application for building a secure API using gRPC in Node.js
JavaScript
1
star
59

cypress-security-vulnerability-test

1
star
60

actions

A set of custom GitHub actions providing additional functionality when integrating Snyk into your Actions CI/CD pipeline.
1
star
61

snyk-java-jar-test

Test Java JARs using Snyk
Python
1
star
62

apply-custom-role

Apply Custom Role to a list of users in each Org of a Group
JavaScript
1
star
63

ksnyk

An experimental tool for working with Snyk and Kubernetes
Python
1
star
64

snyk-migrate-to-github-app

Python
1
star
65

snyk-container-remediation

Go
1
star