From the root directory of the SPC application, execute the Synk command below. The Snyk test command will test your dependencies for vulnerabilities and tell you how many vulnerabilities are found.
Synk CLI offers a number of switches for specific use cases and formatting of output.
Since we did not build the application the scan will take longer. This will take ~2 mins. If we packaged the application the scan will take 30 seconds.
Results of running Snyk test
Snyk test displays a list of vulnerabilities grouped by fixable and non-fixable issues followed by license compliance issues. Take a minute to review the output, similar to the results below. Snyk provides fixG advice for fixable vulnerabilities.
Tested 83 dependencies for known issues, found 22 issues, 22 vulnerable paths.