From c25cd6d0b524f424e8ae4a7092253ee368cb5fc0 Mon Sep 17 00:00:00 2001 From: curben Date: Sat, 9 Mar 2019 15:15:45 +1030 Subject: [PATCH] docs: snyk doesn't use patch anymore --- source/_posts/secure-node-modules-snyk.md | 4 +++- source/_posts/snyk-patch-alpine-docker.md | 4 +++- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/source/_posts/secure-node-modules-snyk.md b/source/_posts/secure-node-modules-snyk.md index db1d9ca..ae23fe8 100644 --- a/source/_posts/secure-node-modules-snyk.md +++ b/source/_posts/secure-node-modules-snyk.md @@ -1,7 +1,7 @@ --- title: Secure node modules with Snyk date: 2018-10-01 00:00:00 -lastUpdated: 2018-10-30 00:00:00 +lastUpdated: 2019-03-09 00:00:00 tags: - Node - Snyk @@ -58,6 +58,8 @@ $ echo 'PATH="$PATH:./node_modules/.bin"' >> ~/.profile ***Attention:*** Snyk depends on GNU version of `patch` utility, so you need to install it if the CI build environment is Alpine or BSD. Otherwise, `snyk protect` won't work. Read my {% post_link snyk-patch-alpine-docker 'newer post' %} for more info. +***Edit:*** Snyk [v1.131.0](https://github.com/snyk/snyk/releases/tag/v1.131.0) onwards no longer use `patch`. + Alternatively, you could integrate directly to your remote repo (github/gitlab). This integration allows Snyk to automatically create pull/merge request. Enable this by going to your Snyk account and Integrations tab. {% cloudinary 20181001/snyk-integration.png %} diff --git a/source/_posts/snyk-patch-alpine-docker.md b/source/_posts/snyk-patch-alpine-docker.md index b30f249..fafac1f 100644 --- a/source/_posts/snyk-patch-alpine-docker.md +++ b/source/_posts/snyk-patch-alpine-docker.md @@ -1,6 +1,6 @@ --- title: Snyk failed to patch in Alpine docker -date: 2018-10-31 00:00:00 +date: 2019-03-09 00:00:00 tags: - Snyk - Linux @@ -10,6 +10,8 @@ tags: Snyk initially runs fine on Alpine, until you try to `snyk protect` to patch the modules. Turns out Synk depends on GNU version of `patch` utility. +***Edit:*** Snyk [v1.131.0](https://github.com/snyk/snyk/releases/tag/v1.131.0) onwards no longer use `patch`. + Snyk is used to patch vulnerabilities of node_modules (read my {% post_link secure-node-modules-snyk 'previous post' %} for installation guide). I never had any issue with it running on Alpine docker image. That was because there was no modules to patch.