mainto an OCI registry.
mainbranches, so that it runs when PRs are open.
snyk-iac-rules test, which will cause the PR check to fail if any of the tests fail.
SNYK_TOKEN, which can be found in your Snyk Account Settings.
mainbranch, you can publish our rules to an OCI registry. This allows you to configure a separate pipeline, to download the custom rules bundle from this location, and run the custom rules in order to catch misconfigurations.
mainbranches, so that it runs when PRs are merged.
snyk-iac-rules buildfollowed by
snyk-iac-rules push, which will publish our generated custom rules bundle to an OCI registry.
v2-betawhile still using
v1in most of our services:
SNYK_CFG_OCI_REGISTRY_PASSWORDenvironment variables to scan your configuration files for any custom rules which may have been breached.