CLI commands and options summary
This page only summarizes the CLI commands and the options for each command. For details, use the links in this summary to open the help docs page for the command you are using. The help docs pages are the same as the help in the CLI.
snyk [COMMAND] [SUBCOMMAND] [OPTIONS] [PACKAGE] [CONTEXT-SPECIFIC-OPTIONS]The Snyk CLI is a build-time tool to find and fix known vulnerabilities in your projects. For a more detailed description of Snyk CLI and Snyk, see Snyk CLI. For an introduction on how to use the Snyk CLI, see Getting started with the CLI.
To learn more about each Snyk CLI command, use the
--help option, for example, snyk auth --help or snyk container --help. Each command in this list is linked to the corresponding help page in these docs.Note: Lists of all the options for Snyk CLI commands are on this page. The options are explained in detail in the help for each command.
Authenticate Snyk CLI with a Snyk account.
Test a project for open source vulnerabilities and license issues.
Snapshot and continuously monitor a project for open source vulnerabilities and license issues.
Print a list of the
snyk container commands, snyk container monitor and snyk container test.Test container images for any known vulnerabilities.
Print a list of the
snyk iac commands: snyk iac describe, snyk iac update-exclude-policy, and snyk iac test.Detect, track, and alert on infrastructure drift and unmanaged resources.
Generate exclude policy rules to be used by
snyk iac describe.Test for any known security issue.
Print the name of the snyk code command with its help option: snyk code testTest for any known security issues using Static Code Analysis.
Find Log4Shell vulnerability.
Manage Snyk CLI configuration.
Display the
.snyk policy for a package.Modify the
.snyk policy to ignore stated issues.Apply the recommended updates for supported ecosystems automatically.
Create a Snyk App using the Snyk CLI.
The following is a list of the sub-commands for Snyk CLI commands. Each sub-command is followed by the command(s) to which the sub-command applies. The commands are linked to their help docs. For details concerning each sub-command, see the help docs.
You can use environment variables to configure the Snyk CLI and also set variables to configure the Snyk CLI to connect with the Snyk API. See Configure the Snyk CLI.
Use
-d option to output the debug logs for any command.Exit codes for the
test commands are all the same. See the exit codes in the following help docs:Additional CLI commands have exit codes as listed in the following help docs:
Lists of the options for Snyk CLI commands follow. Each option is followed by the command(s) to which the option applies. The commands are linked to their help docs. For details concerning each option, see the help docs.
--org=<ORG_ID>: test, monitor, code test, container test, container monitor, iac test, iac describe--policy-path=<PATH_TO_POLICY_FILE>: test, monitor, container test, container monitor, iac test, iac describe, ignore--project-business-criticality=<BUSINESS_CRITICALITY>[,<BUSINESS_CRITICALITY>]...>: monitor, container monitor, iac testCurrently the following options are not supported:
These options are used with the
snyk test and snyk monitor commands. See the help docs for snyk test and snyk monitor for details.Last modified 1h ago