Get started with Snyk IaC to inspect, find and fix issues in configuration files for Terraform or Kubernetes (including Helm) environments. For more information, see Scan your Kubernetes configuration files and Scan your Terraform files.
Ensure you have:
- A Snyk account (go to https://snyk.io/ and sign up - see Create a Snyk account for details).
- An existing Kubernetes or Terraform environment to work in.
- Integrated your Git repository as for other Snyk products - see Git repository (SCM integrations) for more details.
For more details, see:
Import projects to test with Snyk, by choosing repositories for Snyk to test and monitor.
- Select Projects from Snyk.io.
- Select the tool to add the project from (for example GitHub):
- In Personal and Organization repositories, select the repositories to use.
- Click Add selected repositories to import the selected repositories into your projects.
- A progress bar appears: click View log to see import log results - for example:
(you can scan both Kubernetes and Terraform files simultaneously, as in this example.)
- Project import completes.
View results for configuration files in imported projects.
- Select Projects, then click on the imported project entry, to see information for scanned configuration files, including the number of high, medium and low severity issues found. For example:
(Issues are sorted into project types: Helm, Kubernetes and Terraform.)
- Click on a project to see more information and details of the issues in a configuration file:
Act on the recommendations produced by Snyk IaC.
- IaC results appear as direct issues in the relevant scanned configuration files. For example:
- Click on an issue to see the details for that issue, and specific recommendations from Snyk IaC. For example:
- Edit the configuration file to fix the issue identified, based on the recommendations, then commit the change.
- Snyk automatically rescans the changed file, and you can see the change reflected in the issue display.