Please refer to https://github.com/snyk-labs/snyk-tags-tool for the latest version of snyk-tags
Snyk Tags is a CLI tool which can:
- Help filter Snyk projects by product type by adding product tags across a Snyk Group or Organization - using
snyk-tags tag - Help filter Snyk projects by applying tags to a target import (for example a git repo like snyk-labs/nodejs-goof) - using
snyk-tags target tagor from a csv/json file withsnyk-tags fromfile target-tag - Help filter Snyk projects by applying attributes to a target import (for example a git repo like snyk-labs/nodejs-goof) - using
snyk-tags target attributesor from a csv/json file withsnyk-tags fromfile target-attributes - Help filter Snyk projects by adding the GitHub Code Owner as a tag to target import (must be a GitHub repo in the form snyk-labs/nodejs-goof) - using
snyk-tags target github - Help with tag management by removing tags from a Group or a target import (for example a git repo like snyk-labs/nodejs-goof) - using
snyk-tags target removeor listing all tags usingsnyk-tags list tags(also in bulk or from a csv/json file withsnyk-tags fromfile)
snyk-tags tag is a CLI tool that uses the Snyk Project Tag API to assign tags in bulk to Snyk projects based on the product.
snyk-tags tag will update all projects of the specified product within a Snyk Group or Organization with the product's tag.
You can also specify a custom tag for the specific project types.
snyk-tags target goes through a target (repo, container, CLI import) to assign tags, attributes and assign the GitHub code owner. Targets in snyk can be varied like:
- snyk-labs/nodejs-goof is the target from a git import
- library/httpd is the target from a container import
- /snyk-labs/nodejs-goof is the target from a CLI import
You can use:
snyk-tags target tagto add tags to a targetsnyk-tags target attributesto add attributes to a targetsnyk-tags target githubto add the GitHub Code Owner as a tag to a target. The GitHub repo must include the GitHub Organization e.g. snyk-labs/nodejs-goof
Once you run snyk-tags, go into the UI, naviagate to the projects page and find the tags filter or attribute filter options on the left-hand menu. Select the tag/attribute you have applied and you will see all projects associated.
Requires Python version above 3.6
To install the simplest way is to use pip:
pip install snyk-tagsAlternatively you can clone the repo and then run the following commands:
poetry install # To install dependencies
python -m snyk-tags # To run snyk-tagsI want to filter all my Snyk Code projects to the whole Snyk Group:
snyk-tags tag sast --group-id=abc --snyktkn=abcI want to filter all my npm Snyk Open Source projects within a specific Snyk Organization:
snyk-tags tag sca --scatype=npm --org-id=abc --snyktkn=abcI want to filter all projects within my snyk-labs/nodejs-goof repo by project:snyk
snyk-tags target tag --target=snyk-labs/nodejs-goof --org-id=abc --snyktkn=abc --tagkey=project --tagvalue=snykI want to add attributes to all projects within my snyk-labs/python-goof repo. The attributes are critical, production, backend
snyk-tags target attributes --target=snyk-labs/python-goof --org-id=abc --snytkn=abc --criticality=critical --environment=backend --lifecycle=productionI want mark with the repo owner all projects of the repo snyk-labs/nodejs-goof so I can filter by owner e.g.Owner:EricFernandezSnyk
snyk-tags target github --target=snyk-labs/nodejs-goof --org-id=abc --snyktkn=abc --githubtkn=abcI want to remove the tag project:snyk from the repo snyk-labs/nodejs-goof
snyk-tags remove tag-from-target --target=snyk-labs/nodejs-goof --group-id=abc --snyktkn=abc --tagkey=project --tagkey=snykI want to filter all projects within snyk-labs/nodejs-goof and snyk-labs/goof repo by project:snyk so I use a csv in the format org-id,target,key,value
snyk-tags fromfile target-tag --file=path/to/file.csv --snyktkn| Snyk IaC | Snyk Open Source | Snyk Container | Snyk Code |
|---|---|---|---|
| terraformconfig | maven | dockerfile | sast |
| terraformplan | npm | apk | |
| k8sconfig | nuget | deb | |
| helmconfig | gradle | rpm | |
| cloudformationconfig | pip | linux | |
| armconfig | yarn | ||
| gomodules | |||
| rubygems | |||
| composer | |||
| sbt | |||
| golangdep | |||
| cocoapods | |||
| poetry | |||
| govendor | |||
| cpp | |||
| yarn-workspace | |||
| hex | |||
| paket | |||
| golang |
| Criticality | Environment | Lifecycle |
|---|---|---|
| critical | frontend | production |
| high | backend | development |
| medium | internal | sandbox |
| low | external | |
| mobile | ||
| saas | ||
| onprem | ||
| hosted | ||
| distributed |