Snyk
Snyk System Scanning integration
This CLI is able to sync asset, scans and vulnerabilities from a folder containing Snyk files.
snyk
- Import a folder of Snyk.xlsx files and sync assets, vulnerabilities and scans to RegScale.
Snyk Processing Workflow
The CLI will process each Snyk file and load assets, vulnerabilities and scans to RegScale.
import_snyk
Import Snyk.xlsx scans and assets to RegScale
Required parameters
-
regscale_ssp_id
The ID number from RegScale of the System Security Plan, required. -
folder_path
The full folder path where the Snyk.xlsx files are located.
Additional Information:
The CLI provides detailed logging throughout the process to indicate progress and to provide troubleshooting in case of issues.
File Format
Below are the expected columns of a Snyk file:
Header Name | Required |
---|---|
ISSUE_SEVERITY | Yes |
PRIORITY_SCORE | |
PROBLEM_TITLE | Yes |
CVE | |
CWE | |
PROJECT_NAME | Yes |
PROJECT_URL | |
EXPLOIT_MATURITY | |
AUTOFIXABLE | Yes |
FIRST_INTRODUCED | |
PRODUCT_NAME | |
ISSUE_URL | |
ISSUE_STATUS_INDICATOR | |
ISSUE_TYPE |
Example Commands
Import Snyk scans to SSP #16 in RegScale using the files located in the snyk_scans folder.
regscale snyk import_snyk --regscale_ssp_id 16 --folder_path /home/bryan/Sync/snyk_scans
NOTE: See All Scanner Integrations for information about how this updates Issues/POAMs
Updated about 1 month ago