nhcarrigan/security
2
0
Fork 0
generated from nhcarrigan/template
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: no snyk

Browse Source
This commit is contained in:
Naomi Carrigan 2025-02-25 15:40:25 -08:00
parent 6b66b0617c
commit 546ac3efa4
Signed by: naomi
SSH Key Fingerprint: SHA256:rca1iUI2OhAM6n4FIUaFcZcicmri0jgocqKiTTAfrt8
1 changed files with 0 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
scan.sh
View File

@ -3,7 +3,6 @@ rm -r ./gitleaks;
rm -r ./trivy; rm -r ./trivy;
rm -r ./grype; rm -r ./grype;
rm -r ./syft; rm -r ./syft;
rm -r ./snyk;
rm -r ./deps; rm -r ./deps;
rm ./index.html; rm ./index.html;
@ -12,7 +11,6 @@ mkdir ./gitleaks;
mkdir ./trivy; mkdir ./trivy;
mkdir ./grype; mkdir ./grype;
mkdir ./syft; mkdir ./syft;
mkdir ./snyk;
mkdir ./deps; mkdir ./deps;
# List of repositories to scan. # List of repositories to scan.
@ -31,12 +29,6 @@ for directory in "${repositories[@]}"; do
grype -o json --file ./grype/$directory.json ./_repos/$directory; grype -o json --file ./grype/$directory.json ./_repos/$directory;
syft scan ./_repos/$directory -o json=./syft/$directory.json; syft scan ./_repos/$directory -o json=./syft/$directory.json;
# Need to move directories for Snyk to track the target correctly.
cd ./_repos/$directory;
snyk monitor --dev --project-name=$directory --remote-repo-url=$(git remote get-url origin) $current_dir/_repos/$directory;
snyk test --dev --json --json-file-output=./snyk/$directory.json $current_dir/_repos/$directory;
cd $current_dir;
# Manual dependency version checks (no reliable package to do this for us :/ ) # Manual dependency version checks (no reliable package to do this for us :/ )
echo "No supported package manager found in this project." > $current_dir/deps/$directory.txt; echo "No supported package manager found in this project." > $current_dir/deps/$directory.txt;
if [ -f ./_repos/$directory/package.json ]; then if [ -f ./_repos/$directory/package.json ]; then