Skip to content

Instantly share code, notes, and snippets.

@garethr

garethr/README.md

Last active May 30, 2022 14:10
Show Gist options
  • Star 1 You must be signed in to star a gist
  • Fork 4 You must be signed in to fork a gist
  • Save garethr/1599cb36cb348d7793a8a501c70085ad to your computer and use it in GitHub Desktop.
Save garethr/1599cb36cb348d7793a8a501c70085ad to your computer and use it in GitHub Desktop.
Download ZIP
Applications demonstrating various Cloud Native tools with Snyk
Raw
README.md

A set of hello world applications, mainly used for demonstraing Snyk. Although the applications themselves are trivial, each repository contains a toolchain using a variety of Cloud Native tools for building container images and deploying to Kubernetes or other platforms. The current set of applications consists of:

Snykest

A demo of all the different Snyk products (nearly):

  • Java
  • Maven
  • SpringBoot
  • Kubernetes
  • Terraform
  • Azure
  • Docker Hub
  • GitHub Actions

Snykus

A real-world workflow for using Docker, Snyk and GitHub to build, secure and publish container images.

  • GitHub Actions
  • Docker
  • Buildx
  • Github Container Registry
  • Secure Code Warrior

Snykum

An example of building and testing an ARM based image with Docker and Snyk.

  • Docker
  • GitHub Actions
  • Buildx
  • build-push-action
  • ARM
  • Docker Hub

Snykt

An example project using a hierarchy of images and using Snyk to test each in turn. This should be relevant in organisations where a central team or teams maintains some images which are then used by several application teams.

  • Python
  • Docker

Snykly

A vulnerable Go application, packaged up using Distroless and published to GCR and Docker Hub.

  • Go
  • Bazel
  • GitHub Actions
  • GCR
  • Docker Hub
  • Kubernetes

Snykier

A pretty straight-forward Spring Boot application for Java fans. It's using the latest 2.3.0.M2 release in order to make use of the new built-in buildpacks support. As an alternative it's also configured to use Jib which makes for a nice comparison.

  • Java
  • Sprint Boot
  • Maven
  • Jib
  • Cloud Native Build Packs
  • GitHub Actions
  • Snyk Maven Plugin
  • Docker Hub

Snykit

Mainly a demonstration of using the new k14s to build and deploy to Kubernetes.

  • Ruby
  • kapp
  • kbld
  • ytt
  • Docker Hub
  • GitHub Actions

Snyker

A Lambda example, specifically using Python and Chalice from AWS. This repository also demonstrates how to use GitHub Actions to have Snyk test your Poetry-based Python applications for both application and development dependencies.

  • Python
  • Poetry
  • AWS Lambda
  • Chalice
  • GitHub Actions

Snykin

A simple Node.js application deployed to Kubernetes using Helm. This app also makes use of Tilt to provide a modern Kubernetes development experience and uses Quay rather than Docker Hub.

  • Node.js
  • Tilt
  • Helm
  • Quay
  • UBI

Snyky

Don't use this unless you're very familiar with all of the moving parts. This example has an over-the-top amount of overlapping examples, in particular centered around using Open Policy Agent as well as Snyk.

  • Python
  • Open Policy Agent
  • Conftest
  • Gatekeeper
  • Tekton Pipelines
  • CircleCI
  • GitHub Actions
  • Docker
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment