View your first Snyk Projects
After you have imported one or more Projects, you can see the results of your scans.
View imports
In the Snyk Web UI, navigate to your Projects page and examine your imported repositories or Targets if you are importing non-code information. An example follows.
For each entry, the icon shows the number of Snyk Projects in each entry, plus the Git-based repository the Projects are imported from.
Private versus public repositories: the lock symbol
When you import a Project, private repositories are identified with a lock symbol in the imported scan details:
For customers on free plans, private repository scans count toward your test count limit.
Typically, team leads do the original integration setup and Project import, rather than individual developers.
View lists of Projects
When you open an entry, you see the different Snyk Projects scanned in that entry.
An example follows:
Understand Project information
Why are there several items here? What do they mean? Which should I use?
When you import Snyk Projects for the first time, you see a lot of information. As you examine the information, you will see how to use it.
When you write your application, you may write your own code, import Open Source libraries with dependencies, and build all of that into a container for deployment.
Snyk scans different parts of this lifecycle, with different icons and entries showing the results for each of these parts of your work, including:
View Project settings
Snyk treats each item in this list as a separate Project.
This allows you to control settings for that Project by clicking on the cog icon to define how that Project is scanned:
Scan results
Look back at the results of your scan:
The scan shows all the vulnerabilities in all aspects of your application. Of course, it is unlikely that you are responsible for every entry in this list, but it is important to be aware of the full picture.
If your Snyk Open Source scan shows no vulnerabilities in your open-source libraries, that is great, but there may still be a lot of issues identified by other scans, such as of your container. Even if the developers in your team did not create or manage these issues, you should know about them.
More information and next step
Last updated