Understand Snyk Container CLI results

Vulnerability information

When Snyk Container detects vulnerabilities, they are presented in the output:

Each vulnerability contains the following information:

Vulnerabilities appear in reverse order of severity so that you can see the most important issues first, with limited scrolling required.

Snyk also reports the total dependencies scanned for known vulnerabilities and the total number of vulnerabilities.

Snyk groups together vulnerabilities that are found in multiple packages. This helps you focus on the number of vulnerabilities rather than the instances only.

Base image recommendations

If Snyk identifies the base image, and the image uses an Official Docker image, the output includes recommendations for upgrades, in order to fix some of the discovered vulnerabilities.

This provides a level of situational awareness, showing the vulnerability counts in minor and major upgrades or in alternative base images, which might have fewer vulnerabilities.

PreviousScan and monitor images NextAdvanced use of Snyk Container CLI

Last updated 3 months ago