Check out the Snyk Gradle plugin.
Scan your thirds party open source dependencies for security vulnerabilities direct from Gradle using the new Snyk Gradle plugin.
For more information check out:
The blog post
The GitHub repo:
snyk / gradle-plugin
Snyk Gradle Plugin - Scanning and monitoring your dependencies for security vulnerabilities from Gradle
Snyk plugin for Gradle
Snyk helps you find, fix and monitor for known vulnerabilities in your dependencies, both on an ad-hoc basis and as part of your CI (Build) system.
The Snyk Gradle plugin tests and monitors your Gradle dependencies.
ℹ️ This product is not an official Snyk supported product. It is an open-source community driven project that is initialised and partially maintained by Snyk engineers |
---|
Using the Snyk Plugin for Gradle
The latest version of the plugin is released at the Gradle Plugins Portal Import the plugin using the plugin DSL
Groovy:
plugins {
id "io.snyk.gradle.plugin.snykplugin" version "0.6.1"
}
Kotlin
plugins {
id("io.snyk.gradle.plugin.snykplugin") version "0.6.1"
}
Setting:
Groovy:
snyk {
arguments = '--all-sub-projects'
severity = 'low'
api = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
autoDownload = true
autoUpdate = true
}
Kotlin:
snyk {
setArguments("--all-sub-projects
…
Top comments (0)