Using Snyk IaC with the Web UI
You can use Snyk IaC with the Snyk Web UI to find and fix issues in configuration files.
In your Projects listing, select the Project to open.
Examine the information and issue cards for that Project:
The information available shows Snyk Project information including:
Snapshot information showing when the Project was last tested
Overview, History, and Settings information. You can use the History section to view previous snapshots of Project.
Filters on the left of the screen
Issue card details
Each issue card shows specific details about that issue:
Details on the issue card include:
The severity level, for example, H for high, and the name of the issue, for example, Non-encrypted S3 Bucket
The ID of the security rule, for example, SNYK-CC-TF-4 Click the link to view more information in the Snyk Security Rules.
A snippet of your code showing the exact area that is vulnerable
The exact path of the issue
More details, such as:
a short description of the issue
the impact of the issue
the remediation advice to resolve the issue
Click Full details to see a preview of the full code:
Click Ignore to ignore this vulnerability. For details, see Ignore Issues.
Examples of results displayed
Terraform Cloud and Helm examples
Terraform Cloud and Helm do not show a code snippet, only the card details. There is no Full details button to show the preview of the full code.
Examples without the line with the vulnerable path
If Snyk can not identify the exact line of the vulnerable path in the file, Snyk does not show a code snippet, only an info message and the card details. If possible, Snyk shows the Full details button so you can see a preview of the full code.
Last updated
Was this helpful?