Advanced Snyk Configuration
Advanced Snyk Configuration
Snyk's enterprise features enable sophisticated security controls:
// .snyk - Advanced Snyk configuration
{
"version": "v1.0.0",
"ignore": {
"SNYK-JS-LODASH-567746": {
"*": {
"reason": "No user input reaches the vulnerable function",
"expires": "2024-12-31T23:59:59.999Z",
"created": "2024-01-15T10:00:00.000Z",
"ignoredBy": "[email protected]"
}
}
},
"patch": {
"npm:minimist:20180720": {
"patched": "2024-01-01T00:00:00.000Z"
}
},
"policy": {
"severityThreshold": "high",
"cvssThreshold": 7.0,
"exploitMaturity": ["mature", "proof-of-concept"],
"socialTrends": true,
"priorityScoreThreshold": 600
},
"settings": {
"scanDevDependencies": false,
"pruneRepeatedSubdependencies": true,
"showVulnerablePaths": "all",
"failOnPolicyBreaches": true,
"enableLicensesScan": true,
"enableRemediation": true
},
"language-settings": {
"python": {
"enableLicensesScan": true,
"resolveDependencies": true
},
"node": {
"yarnWorkspaces": true,
"includeDevDependencies": false
},
"go": {
"enableVendoredDependencies": true
}
},
"container": {
"exclude-base-image-vulns": false,
"severity-threshold": "high",
"scan-timeout": 600,
"platform": ["linux/amd64", "linux/arm64"]
}
}