Snykit

A simple vulnerable Ruby application deployed to Kubernetes, used for demonstration purposes.

This repository demonstrates using the k14s toolchain for Kubernetes. Specifically using YTT for templating the configuration, kbld to build the image and store the SHA in the Kubernetes manifest and kapp to deploy to Kubernetes.

GitHub Actions is used to automatically build the images and generate a Kubernetes configuration file populated with the image SHA. You can deploy the latest version of the application using kubectl like so:

kubectl apply -f https://raw.githubusercontent.com/garethr/snykit/master/dist/snykit.yaml

Alternatively you can use kapp here as well:

kapp deploy -a snykit -f https://raw.githubusercontent.com/garethr/snykit/master/dist/snykit.yaml

Vulnerable?

The application, and the associated image, have a few known vulnerabilities. We can use Snyk to detect them. Snyk can be used via the CLI, or integrated with your CI system (including with Actions) but in this case we've imported directly from GitHub, Docker Hub and the running application in Kubernetes.

Name		Name	Last commit message	Last commit date
Latest commit History 131 Commits
.github/workflows		.github/workflows
assets		assets
dist		dist
spec		spec
.mergify.yml		.mergify.yml
.rspec		.rspec
Dockerfile		Dockerfile
Gemfile		Gemfile
Gemfile.lock		Gemfile.lock
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
Rakefile		Rakefile
app.rb		app.rb
config.ru		config.ru
puma.rb		puma.rb
snykit.yaml		snykit.yaml
values.yaml		values.yaml

License

garethr/snykit

Folders and files

Latest commit

History

Repository files navigation

Snykit

Vulnerable?

About

Topics

Resources

License

Stars

Watchers

Forks

Languages