cd ~/projects/myproj/
) and run $ snyk test
.snyk test
command identifies all the local dependencies and queries the Snyk service for known vulnerabilities. snyk test
displays the issues found along with additional information. For Node.js, Ruby, and Java projects, snyk test
also suggests steps to fix.snyk test
runs, it tries to autodetect your project type by looking for the following files and analyzing the first of the files that it finds. To analyze multiple manifest files see Monorepos and projects with multiple manifest files on this page. Files that Snyk uses to autodetect the project type include, but are not limited to, the following:--file
option. To identify all of the files, use the --all-projects
option, for example:$ snyk test --file=package.json
; $ snyk test --all-projects
$ snyk test --file=req.txt --package-manager=pip
--dev
option:$ snyk test --dev