Snyk Dependency Extractor
Project description
snyk-dependency-extractor
Tool to extract dependencies from a Snyk group. Initial version, updates may come.
The tool uses 5 threads to process the organizations inside the group, and 4 threads for each org to process the deps. This way we can avoid slowing ourselves (mostly) by throttling on huge orgs.
- Free software: GNU General Public License v3.0
Features
- Extract all dependencies from a Snyk group into a csv in the local folder
Todo / Roadmap
- Enable multiple output formats, json/parquet
- Pypi package
- CLI command
- Proper docs/testing
- Pipeline
- Filtering for orgs
- Analytics and data deduplication
Install
Use pip
for install:
pip install snyk-depxtractor
Usage
export SNYK_TOKEN=xxxxxxx-xxxxxx-xxxx
sde dump-group-deps [tsv,json,parquet,all]
# all means tsv, json, parquet 🤓
If you want to setup for development:
# Install poetry using pipx
python -m pip install pipx
python -m pipx ensurepath
pipx install poetry
# Clone repository
git clone https://github.com/zsolt-halo/snyk-depxtractor.git
cd snyk-dependency-extractor/
$ # Install dependencies and hooks
$ poetry install
$ poetry run pre-commit install
Known Issues
Pokemon exception handling, we catch them all.
Will fix it eventually :)
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
snyk_depxtractor-0.1.3.tar.gz
(19.2 kB
view hashes)
Built Distribution
Close
Hashes for snyk_depxtractor-0.1.3-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | d103454b47c2ff5e05f781467f35289a8753e767f0443c53810868a92a87e17d |
|
MD5 | 6a3b27817cd59b2e44bc37a85603c6f9 |
|
BLAKE2b-256 | 1e38319a6be57109571f1789eb1549926509437d2ca5088a0d555301effa7e43 |