Integrations 101

Integrations 101

snyk logo
Snyk
Jul 25, 2023
Snyk

July 2023 - watch Integrations 101.

You will learn about:

  • IDE set up
  • Reporting functionality
  • CLI setup and usage
  • Git onboarding
  • Creating Jira tickets
  • And more.

Watch if you:

  • are interested in jumpstarting your Snyk experience
  • are a new user or in need of a refresher
  • are the administrator of Snyk at your company

Chapters:

00:00 Introductions

00:27 Agenda

01:24 Useful Resources and Community

03:54 Poll

05:27 Big Picture - rolling out Snyk in your pipeline - First 30 days

10:30 Initial settings - Enable Snyk Code, Set License, Security, and IaC policies

13:00 Connecting to a code repository, suggestions for Github customers, Integration and settings, and the PR check

15:30 Adding projects from a Git code repository

14:40 Importing at Scale - Import API

19:40 Pull request checks

20:50 Mark as successful in SCM

22:05 Pull Request Check settings - Day 1 vs Steady State

23:38 IDE - Installing and Authorizing

25:25 Personal Account Token for CLI, API, IDE

26:50 IDE - testing your code

28:52 CLI - Installing and Authorizing locally and build system

29:35 CLI - Open Source - Testing, Monitoring Open Source, Generating Artifacts

33:53 CLI - Generating Build Artifacts - SBOM, snyk-to-html

35:45 CLI - Snyk Code Test, test artifacts, output formats (Sarif, JSON, snyk-to-html)

37:40 CLI - IaC - test your IaC files

38:08 CLI - IaC - Kubernetes

38:30 CLI - IaC - Reporting issues in IaC with --report

39:07 CLI - IaC - Terraform, plan files

40:23 CLI - Containers - Test and Monitor

42:20 CLI - Containers - Filtering/Focusing results

44:03 Reviewing issues at the project level and enterprise reports

48:06 Reporting - Export CSV, API

48:24 Jira - Choosing the Snyk legacy integration and the new Jira integration

49:19 Jira - Enabling the new Jira Integration

50:38 Jira - Creating Tickets, Automation from results

51:25 Jira - Refresh - high level steps for integration and a helpful video

52:08 Q&A - API/export - Does Snyk export contain description and examples, as well as fixes?

54:20 Q&A - CLI - Integrating with a CI/CD that has no integration (i.e. Bambu), discussion on Snyk Labs examples

57:25 Q&A - Snyk Service Account Token - using the service account token

59:04 Q&A - Reporting - Reset or remove reporting history
1:00:00 Q&A Ignores and CI/CD - Recommended actions for CI/CD
1:04:04 Thank you!
Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

Learn more about Snyk http://bit.ly/snyk-io

📱Social Media📱
___________________________________________
Twitter: https://twitter.com/snyksec
Facebook: https://www.facebook.com/snyksec
LinkedIn: https://www.linkedin.com/company/snyk
Website: https://snyk.io/

Copyright © 2024 OpsMatters™. All rights reserved.