Problem:
Users who have been assigned a custom role/member role with restrictive access may be able to scan/test open source and code projects via CLI or IDE integration but get access errors when trying to scan IAC or Container projects.
Examples of errors:
Resolution:
For IAC and Container testing in CLI/IDE, the View Preview Features setting must be enabled for the role. A Group Admin will need to check the custom role and ensure that the following access settings are enabled:
Read-only CLI/IDE use the minimum permission set:
- View Organization
- Test Project
- Test Packages
- View Preview Features
For full CLI/IDE permissions, use the following minimum permission set:
- View Organization
- Test Project
- Add Project - This allows for monitoring of the Snyk web UI
- Test Packages
- View Preview Features