From f0c18bedde319cc2fe7e603d17eec3a4950e3288 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 27 May 2024 13:15:50 +0000 Subject: [PATCH] docs: synchronizing help from snyk/user-docs (#5212) Co-authored-by: Avishagp --- help/cli-commands/code-test.md | 8 ++++++++ help/cli-commands/iac-capture.md | 2 +- help/cli-commands/monitor.md | 22 ++++++++++++++++++++++ help/cli-commands/sbom.md | 10 +++++----- help/cli-commands/test.md | 32 +++++++++++++++++++++++++++----- 5 files changed, 63 insertions(+), 11 deletions(-) diff --git a/help/cli-commands/code-test.md b/help/cli-commands/code-test.md index 69b202f3be..62766d2bcf 100644 --- a/help/cli-commands/code-test.md +++ b/help/cli-commands/code-test.md @@ -88,3 +88,11 @@ Use to display the human-readable test output using stdout and, at the same time Report only vulnerabilities at the specified level or higher. **Note**: The Snyk Code configuration issues do not use the `critical` severity level. + +### `--include-ignores` + +Include ignored vulnerabilities in the results. + +**Note**: This option is available if you are an Enterprise customer and in the Consistent Ignores Closed Beta. + +Issues will appear in a separate section of the test results. diff --git a/help/cli-commands/iac-capture.md b/help/cli-commands/iac-capture.md index aae5505ff4..4a90dc7ec0 100644 --- a/help/cli-commands/iac-capture.md +++ b/help/cli-commands/iac-capture.md @@ -8,7 +8,7 @@ ## Description -The `snyk iac capture` command generates a mapping artifact that contains the minimum amount of information needed to generate, from Terraform state files, resource mappings from code to Cloud, such as resource IDs and names, and sends the mapping artifact to Snyk. +The `snyk iac capture` command generates a mapping artifact that contains the minimum amount of information needed to generate resource mappings from code to Cloud from Terraform state files, such as resource IDs and names, and sends the mapping artifact to Snyk. Snyk uses this information to link Cloud issues to their originating IaC files. The links can be viewed in the Snyk Web UI. diff --git a/help/cli-commands/monitor.md b/help/cli-commands/monitor.md index 85a58aa56e..684208f8f8 100644 --- a/help/cli-commands/monitor.md +++ b/help/cli-commands/monitor.md @@ -261,6 +261,8 @@ For Gradle "multi project" configurations, monitor a specific sub-project. For "multi project" configurations, monitor all sub-projects. +Both a build.gradle file and a settings.gradle file, or equivalent files, based on the package manager, must exist in the current directory. + ### `--configuration-matching=` Resolve dependencies using only configuration(s) that match the specified Java regular expression. @@ -295,6 +297,26 @@ Example: `snyk monitor --file=my-project.sln --project-name-prefix=my-group/` This is useful when you have multiple projects with the same name in other `.sln` files. +## Options for .NET projects + +### `--dotnet-runtime-resolution` + +**Note:** This option in in Early Access and may change until it is released. + +Required. You must use this option when you test .NET projects using [Runtime Resolution Scanning](https://docs.snyk.io/getting-started/supported-languages-and-frameworks/.net/improved-.net-scanning) + +Example: `snyk test --dotnet-runtime-resolution` + +### `--dotnet-target-framework` + +**Note:** This option in in Early Access and may change until it is released. + +Optional. You may use this option if your solution contains multiple `` directives. If you do not specify the option `--dotnet-target-framework`, all supported Target Frameworks will be scanned. + +The Target Framework specified with this option should be defined following the standard [naming convention](https://learn.microsoft.com/en-us/dotnet/standard/frameworks#supported-target-frameworks) + +Example: `snyk test --dotnet-runtime-resolution --dotnet-target-framework=net6.0` + ## Options for npm projects **Note**: You can use the following options with npm projects: diff --git a/help/cli-commands/sbom.md b/help/cli-commands/sbom.md index a2c982c7fb..a247e29870 100644 --- a/help/cli-commands/sbom.md +++ b/help/cli-commands/sbom.md @@ -14,7 +14,7 @@ The `snyk sbom` feature requires an internet connection. ## Usage -`$ snyk sbom --format= [--file=] [--unmanaged] [--org=] [--dev] [--all-projects] [--name=] [--version=] [--exclude=[,...]] [--detection-depth=] [--prune-repeated-subdependencies|-p] [--maven-aggregate-project] [--scan-unmanaged] [--scan-all-unmanaged] [--sub-project=] [--gradle-sub-project=] [--all-sub-projects] [--configuration-matching=] [--configuration-attributes=[,]] [--init-script=] [--json-file-output=] []` +`$ snyk sbom --format= [--org=] [--file=] [--unmanaged] [--dev] [--all-projects] [--name=] [--version=] [--exclude=[,...]] [--detection-depth=] [--prune-repeated-subdependencies|-p] [--maven-aggregate-project] [--scan-unmanaged] [--scan-all-unmanaged] [--sub-project=] [--gradle-sub-project=] [--all-sub-projects] [--configuration-matching=] [--configuration-attributes=[,]] [--init-script=] [--json-file-output=] []` ## Description @@ -120,14 +120,14 @@ Default: 4 Prune dependency trees, removing duplicate sub-dependencies. -### `[]` - -Optional. Instruct the CLI to autodetect a package manager manifest file to use within the specified directory. If `--file` is set, this option will be ignored. - ### `[--json-file-output]` Optional. Save the SBOM output as a JSON data structure directly to the specified file. This requires the SBOM `--format` to include `+json`. +### `[]` + +Optional. Instruct the CLI to autodetect a package manager manifest file to use within the specified directory. If `--file` is set, this option will be ignored. + ## Options for Maven projects ### `--maven-aggregate-project` diff --git a/help/cli-commands/test.md b/help/cli-commands/test.md index da491a157c..cc2762a3b9 100644 --- a/help/cli-commands/test.md +++ b/help/cli-commands/test.md @@ -252,7 +252,7 @@ Auto-detect Maven, JAR, WAR, and AAR files recursively from the current folder.& ## Options for Gradle projects -**Note:** If you see the invalid string length error, refer to I[nvalid string length error when scanning projects](https://docs.snyk.io/snyk-cli/scan-and-maintain-projects-using-the-cli/invalid-string-length-error-when-scanning-projects) +**Note:** If you see the invalid string length error, refer to [Invalid string length error when scanning projects](https://docs.snyk.io/snyk-cli/scan-and-maintain-projects-using-the-cli/invalid-string-length-error-when-scanning-projects) ### `--sub-project=`, `--gradle-sub-project=` @@ -260,7 +260,9 @@ For Gradle multi project configurations, test a specific sub-project. ### `--all-sub-projects` -For multi project configurations, test all sub-projects. +For multi project configurations, test all sub-projects. \ +\ +Both a build.gradle file and a settings.gradle file, or equivalent files, based on the package manager, must exist in the current directory. ### `--all-projects` @@ -326,6 +328,26 @@ Example: `snyk monitor --file=my-project.sln --project-name-prefix=my-group/` This is useful when you have multiple projects with the same name in other `.sln` files. +## Options for .NET projects + +### `--dotnet-runtime-resolution` + +**Note:** This option in in Early Access and may change until it is released. + +Required. You must use this option when you test .NET projects using [Runtime Resolution Scanning](https://docs.snyk.io/getting-started/supported-languages-and-frameworks/.net/improved-.net-scanning) + +Example: `snyk test --dotnet-runtime-resolution` + +### `--dotnet-target-framework` + +**Note:** This option in in Early Access and may change until it is released. + +Optional. You may use this option if your solution contains multiple `` directives. If you do not specify the option `--dotnet-target-framework`, all supported Target Frameworks will be scanned. + +The Target Framework specified with this option should be defined following the standard [naming convention](https://learn.microsoft.com/en-us/dotnet/standard/frameworks#supported-target-frameworks) + +Example: `snyk test --dotnet-runtime-resolution --dotnet-target-framework=net6.0` + ## Options for npm projects **Note**: You can use the following options with npm projects: @@ -392,7 +414,7 @@ Snyk uses Python in order to scan and find your dependencies. If you are using m Default: `python` This executes your default python version. Run `python -V` to find out what your default version is. -Example: `snyk test--command=python3` +Example: `snyk test --command=python3` ### `--skip-unresolved=true|false` @@ -418,7 +440,7 @@ For complete information about the command see [`--package-manager=` @@ -458,7 +480,7 @@ To see how confident Snyk is about the identified dependency and its version, us ### `-- []` -Use a double dash (`--`) after the complete Snyk command to pass additional options (arguments, flags) that follow directly to the build tool, for example Gradle or Maven. +Use a double dash (`--`) after the complete Snyk command to pass additional options (arguments, flags) that follow directly to the build tool, for example, Gradle or Maven. The format is `snyk -- []`