diff --git a/developer-tools/cli-ide-and-ci-cd-integrations/snyk-cli/configure-the-snyk-cli/configure-snyk-cli-to-connect-to-snyk-api.md b/developer-tools/cli-ide-and-ci-cd-integrations/snyk-cli/configure-the-snyk-cli/configure-snyk-cli-to-connect-to-snyk-api.md
index e44b0a0648fb..72ffa931de8e 100644
--- a/developer-tools/cli-ide-and-ci-cd-integrations/snyk-cli/configure-the-snyk-cli/configure-snyk-cli-to-connect-to-snyk-api.md
+++ b/developer-tools/cli-ide-and-ci-cd-integrations/snyk-cli/configure-the-snyk-cli/configure-snyk-cli-to-connect-to-snyk-api.md
@@ -6,7 +6,7 @@ By default, the Snyk CLI connects to `https://api.snyk.io/`. You can use the fol
`SNYK_API`
-Specifying this variable sets the API host that will be used for Snyk requests. This is useful for [regional hosting](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#cli-and-ci-pipeline-urls), on-premise instances, or when you are using a proxy server. If this variable is set with the `http` protocol, the CLI upgrades the requests to `https` unless `SNYK_HTTP_PROTOCOL_UPGRADE` is set to `0`.
+Specifying this variable sets the API host used for Snyk requests. This is useful for [regional hosting](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#cli-and-ci-pipeline-urls), on-premise instances, or when you are using a proxy server. If this variable is set with the `http` protocol, the CLI upgrades the requests to `https` unless `SNYK_HTTP_PROTOCOL_UPGRADE` is set to `0`.
`SNYK_HTTP_PROTOCOL_UPGRADE=0`
@@ -24,7 +24,7 @@ Specifying this variable disables all Snyk CLI analytics.
`SNYK_TOKEN`
-Specifying this variable allows you to override the token that may be available in your Snyk configuration settings (`~/.config/configstore/snyk.json`). Use `SNYK_TOKEN` in a CI/CD environment. After setting `SNYK_TOKEN` you can [get started](../../../snyk-cli/getting-started-with-the-snyk-cli.md) using the CLI.
+Specifying this variable lets you override the token available in your Snyk configuration settings (`~/.config/configstore/snyk.json`). Use `SNYK_TOKEN` in a CI/CD environment. After setting `SNYK_TOKEN` you can [get started](../../../snyk-cli/getting-started-with-the-snyk-cli.md) using the CLI.
For information on how to get your account token see [Authenticate the CLI with your account](../../../snyk-cli/authenticate-to-use-the-cli.md). You can also use a service account to authenticate; for more information see [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts). For additional information, see [Authentication for third-party tools](../../../implementation-and-setup/enterprise-setup/authentication-for-third-party-tools.md).
diff --git a/developer-tools/implementation-and-setup/enterprise-setup/authentication-for-third-party-tools.md b/developer-tools/implementation-and-setup/enterprise-setup/authentication-for-third-party-tools.md
index 726c843d9feb..6b025e427507 100644
--- a/developer-tools/implementation-and-setup/enterprise-setup/authentication-for-third-party-tools.md
+++ b/developer-tools/implementation-and-setup/enterprise-setup/authentication-for-third-party-tools.md
@@ -1,6 +1,6 @@
# Authentication for third-party tools
-When you work with Snyk from within any third-party tool, Snyk requires authentication in order to initiate its processes.
+When you work with Snyk from within any third-party tool, Snyk requires authentication to initiate its processes.
Snyk offers API tokens to enable integrations with third-party developer tools. You can authenticate through your personal account using your personal token or through a [service account](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts) using the token associated with that account. When you authenticate through a service account, you do not use any personal token.
diff --git a/developer-tools/integrations/event-forwarding/README.md b/developer-tools/integrations/event-forwarding/README.md
index 9fe1f29189b2..4e278976d68d 100644
--- a/developer-tools/integrations/event-forwarding/README.md
+++ b/developer-tools/integrations/event-forwarding/README.md
@@ -1,13 +1,13 @@
# Event forwarding
-Snyk event forwarding integrations allow you to push Snyk platform events directly to certain products on other platforms, enabling you to set up custom alerting, build your own reporting, trigger automation, and more.
+Snyk event forwarding integrations let you push Snyk platform events directly to certain products on other platforms, so you can set up custom alerting, build your own reporting, trigger automation, and more.
## Event types
Snyk supports sending two different types of events:
1. **Snyk issue events** - these events are sent when new issues are discovered in a Snyk Project, or when an issue is updated. Each event contains information about the vulnerability or other problem found, including whether a remediation is available.
-2. **Snyk platform audit events** - these events are sent every time a Snyk user performs an action within the Snyk platform. For more information, see [Audit logs](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group).
+2. **Snyk platform audit events** - these events are sent every time a Snyk user performs an action in the Snyk platform. For more information, see [Audit logs](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group).
{% hint style="info" %}
The **Snyk issue** event type does not include Snyk Cloud issues.
diff --git a/developer-tools/integrations/event-forwarding/amazon-eventbridge.md b/developer-tools/integrations/event-forwarding/amazon-eventbridge.md
index 44d944c1d5bb..4a9b2153c3ac 100644
--- a/developer-tools/integrations/event-forwarding/amazon-eventbridge.md
+++ b/developer-tools/integrations/event-forwarding/amazon-eventbridge.md
@@ -1,13 +1,13 @@
# Amazon EventBridge
-The [Amazon EventBridge](https://aws.amazon.com/eventbridge/) integration sends Snyk platform events to EventBridge, allowing you to integrate Snyk events into your existing AWS environments. The integration can be configured to send two different types of events:
+The [Amazon EventBridge](https://aws.amazon.com/eventbridge/) integration sends Snyk platform events to EventBridge, so you can integrate Snyk events into your existing AWS environments. You can configure the integration to send two different types of events:
* **Snyk issue events**: These events are sent when new issues are discovered in a Snyk Project, or when an issue is updated. Each event contains information about the vulnerability or other problem found, including whether a remediation is available.
-* **Snyk platform audit events**: These events are sent every time a Snyk user performs an action within the Snyk platform. For more information, see [Retrieve audit logs of user-initiated activity by API for an Org or Group](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group). This event type is available with Snyk Enterprise plans. For more information, see this page about [trials](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/implementation-guides/enterprise-implementation-guide/trial-limitations) and [Plans and pricing](https://snyk.io/plans/).
+* **Snyk platform audit events**: These events are sent every time a Snyk user performs an action in the Snyk platform. For more information, see [Retrieve audit logs of user-initiated activity by API for an Org or Group](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group). This event type is available with Snyk Enterprise plans. For more information, see this page about [trials](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/implementation-guides/enterprise-implementation-guide/trial-limitations) and [Plans and pricing](https://snyk.io/plans/).
To set up the integration, there are two steps:
-1. Configure an EventBridge integration in the Snyk dashboard. This will create a Snyk **Partner Event Source** in your AWS account, which you can see in the EventBridge dashboard.
+1. Configure an EventBridge integration in the Snyk dashboard. This creates a Snyk **Partner Event Source** in your AWS account, which you can see in the EventBridge dashboard.
2. Configure the Snyk integration in Amazon EventBridge. This step involves associating the Snyk event source created in step one with an EventBridge **Event Bus**.
After you complete these steps, Snyk immediately starts sending events to the configured event bus.
@@ -26,19 +26,19 @@ When the form is completed, click **Add integration**. After this step is done,
## Snyk App authorization
-If this is the first time you have set up an Amazon EventBridge integration for your Organization, you will be prompted to complete the Snyk App authorization flow.
+If this is the first time you have set up an Amazon EventBridge integration for your Organization, Snyk prompts you to complete the Snyk App authorization flow.
-After completing the authorization flow, you will be redirected to the settings page for the integration.
+After completing the authorization flow, Snyk redirects you to the settings page for the integration.
## Configure the integration in Amazon EventBridge
-After configuring the EventBridge integration on the Snyk side, you should see a new **Partner Event Source** in the EventBridge console. Navigate to the EventBridge console and navigate to the **Partner event sources** page under the **Integration** section.
+After configuring the EventBridge integration on the Snyk side, a new **Partner Event Source** appears in the EventBridge console. Navigate to the EventBridge console and navigate to the **Partner event sources** page under the **Integration** section.
Partner event sources
-Snyk-generated event sources will have a naming pattern like this:
+Snyk-generated event sources have a naming pattern like this:
`aws.partner/snyk.io/org_/`\
\
@@ -53,14 +53,14 @@ Navigate to the [EventBridge integration settings page](https://app.snyk.io/mana
Clicking on the name of the integration opens the integration settings page, which displays configuration information for the integration.
{% hint style="info" %}
-Because EventBridge integrations create an external resource that depends on the configured AWS Account ID, Region, and event type, it is not possible to edit these configuration fields. If you need to change one of these fields, delete the integration and create a new one. This deletes the existing **partner event source** in AWS and creates a new one, which you will need to associate with an **event bus** as described above.
+Because EventBridge integrations create an external resource that depends on the configured AWS Account ID, Region, and event type, it is not possible to edit these configuration fields. If you need to change one of these fields, delete the integration and create a new one. This deletes the existing **partner event source** in AWS and creates a new one, which you must associate with an **event bus** as described in the preceding steps.
{% endhint %}
-To delete an integration, scroll to the bottom of the page and click the **Remove integration** button, then confirm the deletion.
+To delete an integration, scroll to the bottom of the page and click **Remove integration**, then confirm the deletion.
Remove integration
-This deletes the integration configuration on the Snyk side and the **Partner Event Source** associated with this integration in AWS. You can verify that the event source has been deleted in the EventBridge console.
+This deletes the integration configuration on the Snyk side and the **Partner Event Source** associated with this integration in AWS. You can verify that Snyk deleted the event source in the EventBridge console.
## Understanding event data
diff --git a/developer-tools/integrations/event-forwarding/aws-cloudtrail-lake.md b/developer-tools/integrations/event-forwarding/aws-cloudtrail-lake.md
index fdc94afe065f..227742da5055 100644
--- a/developer-tools/integrations/event-forwarding/aws-cloudtrail-lake.md
+++ b/developer-tools/integrations/event-forwarding/aws-cloudtrail-lake.md
@@ -5,7 +5,7 @@
The AWS CloudTrail Lake integration is available only with Snyk Enterprise plans. For more information, see [plans and pricing](https://snyk.io/plans/).
{% endhint %}
-The AWS CloudTrail Lake integration allows you to forward [Snyk audit logs](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group) to AWS CloudTrail Lake, which lets you run SQL-based queries on your logs and retain them for up to seven (7) years.
+The AWS CloudTrail Lake integration lets you forward [Snyk audit logs](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/retrieve-audit-logs-of-user-initiated-activity-by-api-for-an-org-or-group) to AWS CloudTrail Lake, which lets you run SQL-based queries on your logs and retain them for up to seven years.
This integration can be configured to forward audit logs for a single Snyk Organization, or for a Snyk Group and all of its child Organizations. In either case, there are two steps required to set up the integration:
@@ -20,18 +20,18 @@ This integration sends logs beginning when you enable it. Logs generated before
Audit logs are captured when Snyk users perform actions on the Snyk platform, such as making changes to settings, adding other users, or accessing protected APIs. When you are setting up this integration, it is important to understand how audit logs are captured, based on how a customer's Snyk account is set up:
-* For customers using Snyk with a single Snyk Organization (or with multiple disconnected Organizations), all audit logs are captured within the scope of the single Organization.
+* For customers using Snyk with a single Snyk Organization (or with multiple disconnected Organizations), all audit logs are captured in the scope of the single Organization.
* For customers who have a Snyk Group with child Organizations, actions such as adding new Organizations to the group or adding users to the group are audited at the Group level, and are not typically associated with an Organization.
This integration supports both use cases:
1. Integrate CloudTrail Lake with a single Snyk Organization
- 1. All audit logs associated directly with that Organization will be sent to CloudTrail Lake.
+ 1. All audit logs associated directly with that Organization are sent to CloudTrail Lake.
2. If the Organization has a parent Group, actions taken on that Group **a**re not sent to CloudTrail Lake.
- 3. If the Organization has members who are also members of other Organizations and Groups, actions taken by those members will only be sent to CloudTrail Lake if they are directly associated with the Organization.
+ 3. If the Organization has members who are also members of other Organizations and Groups, actions taken by those members are sent to CloudTrail Lake only if they are directly associated with the Organization.
2. Integrate CloudTrail Lake with a Snyk Group and all of its child Organizations
- 1. All audit logs associated with the Group or any of its child Organizations will be sent to CloudTrail Lake.
- 2. When new Organizations are added to the Group, audit logs for those Organizations will be sent automatically to CloudTrail Lake.
+ 1. All audit logs associated with the Group or any of its child Organizations are sent to CloudTrail Lake.
+ 2. When new Organizations are added to the Group, audit logs for those Organizations are sent automatically to CloudTrail Lake.
## Add a Snyk integration in AWS CloudTrail Lake
@@ -43,7 +43,7 @@ During the setup, you must supply an **External ID** for the integration. The va
### External ID for a Single Snyk Organization
-If you are creating this integration for a single Snyk Organization, you will use your Snyk **Organization ID** as the **External ID.** You can find your Organization ID under Snyk **Organization Settings**.
+If you are creating this integration for a single Snyk Organization, use your Snyk **Organization ID** as the **External ID.** You can find your Organization ID under Snyk **Organization Settings**.
Organization ID on Snyk Organization settings page
@@ -51,7 +51,7 @@ Copy the value in the **Organization ID** field to the **External ID** field in
### External ID for a Snyk group
-If you are setting up this Organization for a Snyk Group, which will automatically include all child organizations, you will use your **Snyk Group ID** as the **External ID**. You can find your Group ID by clicking on the name of your Snyk group in the Snyk dashboard, and then navigating to the **Settings** page.
+If you are setting up this Organization for a Snyk Group, which automatically includes all child Organizations, use your **Snyk Group ID** as the **External ID**. You can find your Group ID by clicking on the name of your Snyk group in the Snyk dashboard, and then navigating to the **Settings** page.
Group settings page
@@ -59,7 +59,7 @@ Copy the value in the **Group ID** field to the **External ID** field in the AWS
### CloudTrail Lake Channel ARN
-When you are finished creating the Snyk integration in AWS CloudTrail Lake, copy the **Channel ARN** that is displayed on the integration page. You will need this for the next step.
+When you are finished creating the Snyk integration in AWS CloudTrail Lake, copy the **Channel ARN** displayed on the integration page. You need this for the next step.
## Configure the integration in Snyk (single Organization)
@@ -77,11 +77,11 @@ After this step is complete, Snyk immediately begins forwarding audit logs to AW
## Snyk App authorization
-If this is the first time you have set up an AWS CloudTrail Lake integration for your Organization, you will be prompted to complete the Snyk App authorization flow.
+If this is the first time you have set up an AWS CloudTrail Lake integration for your Organization, Snyk prompts you to complete the Snyk App authorization flow.
Snyk App authorization
-After completing the authorization flow you will be redirected to the settings page for the integration.
+After completing the authorization flow, Snyk redirects you to the settings page for the integration.
## Configure the integration in Snyk (Snyk Group and child Organizations)
@@ -132,7 +132,7 @@ Select **Remove integration** and confirm that you want to remove the integratio
Remove integration button
-This action removes Snyk’s configuration for this integration, which will prevent any further audit logs from being sent to AWS CloudTrail Lake. This does not remove the Snyk integration in AWS CloudTrail Lake. To do this, navigate to AWS CloudTrail Lake and delete the Snyk integration from the **Integration** list.
+This action removes the Snyk configuration for this integration, which prevents any further audit logs from being sent to AWS CloudTrail Lake. This does not remove the Snyk integration in AWS CloudTrail Lake. To do this, navigate to AWS CloudTrail Lake and delete the Snyk integration from the **Integration** list.
## Remove an AWS CloudTrail Lake integration (Snyk Group and child Organizations)
@@ -161,7 +161,7 @@ Replace `` with the ID of the event data store that is asso
## Understanding the log data
-There are three (3) key fields to note when using the Snyk audit log data in AWS CloudTrail Lake.
+There are three key fields to note when using the Snyk audit log data in AWS CloudTrail Lake.
`eventdata.useridentity`
@@ -173,4 +173,4 @@ This represents the type of audit event, for example, `api.access` or `org.cloud
`eventdata.additionaleventdata`
-This field contains a raw JSON payload with more detailed information about the audit event. The content of the payload depends on the type of the event. For example, an API access event will include the accessed URL, while a settings change event will include before and after values for the changed setting.
+This field contains a raw JSON payload with more detailed information about the audit event. The content of the payload depends on the type of the event. For example, an API access event includes the accessed URL, while a settings change event includes before and after values for the changed setting.
diff --git a/developer-tools/integrations/event-forwarding/aws-security-hub.md b/developer-tools/integrations/event-forwarding/aws-security-hub.md
index e5e28ae17d88..92a0557a5987 100644
--- a/developer-tools/integrations/event-forwarding/aws-security-hub.md
+++ b/developer-tools/integrations/event-forwarding/aws-security-hub.md
@@ -1,6 +1,6 @@
# AWS Security Hub
-The [AWS Security Hub](https://aws.amazon.com/security-hub/) integration sends Snyk issues to Security Hub, allowing you to centralize your security reporting, build custom alerting, and trigger automation. After it is configured, the integration automatically uploads Snyk issues to Security Hub as security findings. When issues are updated or new remediations become available, the corresponding Security Hub findings are automatically updated.
+The [AWS Security Hub](https://aws.amazon.com/security-hub/) integration sends Snyk issues to Security Hub, so you can centralize your security reporting, build custom alerting, and trigger automation. After it is configured, the integration automatically uploads Snyk issues to Security Hub as security findings. When issues are updated or new remediations become available, the corresponding Security Hub findings are automatically updated.
There are two steps required to configure the integration:
@@ -28,16 +28,16 @@ Enter a **name** for the integration, along with the **AWS Account ID** and **AW
After this step is complete, Snyk begins sending new issue events to Security Hub.
{% hint style="info" %}
-Issues on existing Projects will not be sent to Security Hub unless those issues are updated. To backfill issues from existing projects, you can delete and re-import them.
+Issues on existing Projects are not sent to Security Hub unless those issues are updated. To backfill issues from existing Projects, you can delete and re-import them.
{% endhint %}
## Snyk App authorization
-If this is the first time you have set up an AWS Security Hub integration for your Organization, you will be prompted to complete the Snyk App authorization flow.
+If this is the first time you have set up an AWS Security Hub integration for your Organization, Snyk prompts you to complete the Snyk App authorization flow.
Snyk App authorization
-After completing the authorization flow you will be redirected to the settings page for the integration.
+After completing the authorization flow, Snyk redirects you to the settings page for the integration.
## Managing and deleting a Security Hub integration
@@ -47,8 +47,8 @@ Navigate to the [Security Hub integration settings page](https://app.snyk.io/man
Clicking on the name of an integration opens the settings page for that integration, where you can view and update configuration information for the integration.
-To delete an integration, scroll to the bottom of the integration settings page and click the **Remove integration** button.
+To delete an integration, scroll to the bottom of the integration settings page and click **Remove integration**.
Remove integration
-After the integration is deleted, Snyk will no longer send issues to Security Hub. Issues that have already been sent to Security Hub will remain there until they are archived.
+After the integration is deleted, Snyk no longer sends issues to Security Hub. Issues already sent to Security Hub remain there until they are archived.
diff --git a/developer-tools/integrations/event-forwarding/crowdstrike-falcon-next-gen-siem.md b/developer-tools/integrations/event-forwarding/crowdstrike-falcon-next-gen-siem.md
index 507b9eb4a0fe..7bec740b70dc 100644
--- a/developer-tools/integrations/event-forwarding/crowdstrike-falcon-next-gen-siem.md
+++ b/developer-tools/integrations/event-forwarding/crowdstrike-falcon-next-gen-siem.md
@@ -24,21 +24,21 @@ The process for setting up this integration consists of:
To use the CrowdStrike NG-SIEM destination, you need to set up a Snyk Data Connector in your CrowdStrike NG-SIEM environment. To learn more, visit the [Snyk](https://falcon.us-2.crowdstrike.com/documentation/page/c7182a06/snyk) page in the CrowdStrike documentation. Select the **snyk-platform (Snyk Platform)** parser while configuring the data connector.
-When setting up the data connector, you receive an API key and URL, which you will use later to configure the Snyk Issue Forwarder.
+When setting up the data connector, you receive an API key and URL, which you use later to configure the Snyk Issue Forwarder.
## Configure Snyk Issue Forwarder
-This section configures Snyk to send issue data to the CrowdStrike connector you just created.
+This section configures Snyk to send issue data to the CrowdStrike connector you created.
* Open the **Integrations** menu.
-* Select the **Add integration** option.
+* Select **Add integration**.
* Select the **Issue Forwardin**g tag and search for CrowdStrike Issue Forwarding.
-* Click the **Add** button.
+* Click **Add**.
* Add the profile name for this integration.
* Add the **API URL** you copied earlier from your CrowdStrike Issue Forwarding account.
* Add the **API key** you copied earlier from your CrowdStrike Issue Forwarding account.
-* Click the **Done** button.
-* When the connection is established, the status of the CrowdStrike Issue Forwarding integration is changed to **Connected**.
+* Click **Done**.
+* When the connection is established, the status of the CrowdStrike Issue Forwarding integration changes to **Connected**.
## Verify the integration connection
diff --git a/developer-tools/integrations/event-forwarding/google-security-command-center.md b/developer-tools/integrations/event-forwarding/google-security-command-center.md
index e9b6243e6e7e..f6c732c160c4 100644
--- a/developer-tools/integrations/event-forwarding/google-security-command-center.md
+++ b/developer-tools/integrations/event-forwarding/google-security-command-center.md
@@ -6,7 +6,7 @@
The Google Cloud Security Command Center integration is in [Early Access](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/snyk-release-process#early-access-features), and is available only with Snyk Enterprise plans. For more information, see [Plans and pricing](https://snyk.io/plans/).
{% endhint %}
-The Google Cloud Security Command Center (SCC) integration sends Snyk issues to SCC, enabling you to view and manage Snyk issues alongside cloud security findings from Google Cloud in a single viewpoint. Snyk issues are represented in SCC as code security findings. When Snyk issues are updated, corresponding SCC findings are automatically updated as well. All details are available at the Organization level in the Google Cloud Security Command Center (SCC) integration.
+The Google Cloud Security Command Center (SCC) integration sends Snyk issues to SCC, so you can view and manage Snyk issues alongside cloud security findings from Google Cloud in a single viewpoint. Snyk issues are represented in SCC as code security findings. When Snyk issues are updated, corresponding SCC findings are automatically updated as well. All details are available at the Organization level in the Google Cloud Security Command Center (SCC) integration.
Use the following instructions to set up the integration:
@@ -28,12 +28,12 @@ Service Accounts are not available at the Organization level in Google Cloud IAM
## Create the findings source using the Google Cloud SCC console
* In the SCC console, navigate to **Marketplace** and search for Snyk. Alternatively, navigate directly to the [Snyk for SCC marketplace listing](https://console.cloud.google.com/marketplace/product/snyk-marketplace/snyk-google-scc).
-* Click **SIGN UP WITH PARTNER** to install the Snyk for SCC integration. During this process, you will create a **Findings Source** for Snyk and a **Service Account** with [Security Center Findings Editor](https://cloud.google.com/security-command-center/docs/access-control-org#securitycenter.findingsEditor) permissions.
+* Click **SIGN UP WITH PARTNER** to install the Snyk for SCC integration. During this process, you create a **Findings Source** for Snyk and a **Service Account** with [Security Center Findings Editor](https://cloud.google.com/security-command-center/docs/access-control-org#securitycenter.findingsEditor) permissions.
{% hint style="warning" %}
**Important Identity and Access Management (IAM) Configuration for Security Command Center**
-The setup process will grant the Snyk Service Account the `Security Center Findings Editor` role on the Project you select. However, how you use Security Command Center determines if an additional step is needed.
+The setup process grants the Snyk Service Account the `Security Center Findings Editor` role on the Project you select. However, how you use Security Command Center determines if an additional step is needed.
* **If you use Google SCC at the Organization level** (most common for businesses):
* You must also add an IAM policy binding at the Organization level.
@@ -42,7 +42,7 @@ The setup process will grant the Snyk Service Account the `Security Center Findi
{% endhint %}
* Navigate to Google Cloud IAM and locate the **Service Accoun**t you created in the previous step, then [create a service account key](https://cloud.google.com/iam/docs/keys-create-delete#creating) in JSON format.
-* Make a note of the **Source ID** (Findings Source name) and the **Service Account Key**, as you will need to provide them to the Snyk Web UI.
+* Make a note of the **Source ID** (Findings Source name) and the **Service Account Key**, as you must provide them to the Snyk Web UI.
You can then set up the integration in Snyk using the Snyk Web UI.
@@ -60,7 +60,7 @@ You can then set up the integration in Snyk using the Snyk Web UI.
3. Enter the following information:
* Profile name for the integration
-* The **Org ID** for the for the Google Cloud project that holds the Kubernetes cluster
+* The **Org ID** for the Google Cloud project that holds the Kubernetes cluster
* The JSON Service Account Key File
* The **Source ID** (Findings Source Name)
diff --git a/developer-tools/integrations/integrate-with-snyk.md b/developer-tools/integrations/integrate-with-snyk.md
index 9eec5f1d5b6c..4e104cefa8d5 100644
--- a/developer-tools/integrations/integrate-with-snyk.md
+++ b/developer-tools/integrations/integrate-with-snyk.md
@@ -4,7 +4,7 @@
Agentic workflows transform software development by using AI assistants to automate tasks and write code, boosting productivity. But this speed poses security risks, as AI-generated code may have vulnerabilities.
-Snyk offers security guardrails through Snyk Studio, including its integration with the Model Context Protocol (MCP), an open standard enabling AI tools to communicate with the Snyk security platform. This allows AI assistants to run scans and check for vulnerabilities during code generation, embedding security early in AI-powered development for both human and AI-generated code.
+Snyk offers security guardrails through Snyk Studio, including its integration with the Model Context Protocol (MCP), an open standard enabling AI tools to communicate with the Snyk security platform. This lets AI assistants run scans and check for vulnerabilities during code generation, embedding security early in AI-powered development for both human and AI-generated code.
Snyk provides information about:
@@ -23,7 +23,7 @@ The Snyk MCP Server is designed as a local MCP server, running on your system us
## Integrations for Snyk
-Many integrations are available for using third-party functionality within Snyk and using Snyk with other tools. See [SCM, IDE, and CI/CD workflow and integrations](../scm-integrations/) for information on integrations and other methods of accomplishing that workflow.
+Many integrations are available for using third-party functionality in Snyk and using Snyk with other tools. See [SCM, IDE, and CI/CD workflow and integrations](../scm-integrations/) for information on integrations and other methods of accomplishing that workflow.
This page identifies additional Snyk integrations and where to find them.
@@ -34,7 +34,7 @@ Snyk provides plugins for repository gatekeepers and integrations to connect wit
There are integrations that support [Snyk Container](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-container/container-registry-integrations).
-Integrations for [event forwarding](event-forwarding/) allow you to push Snyk platform events directly to certain products on other platforms, enabling you to set up custom alerting, build your own reporting, trigger automation, and more.
+Integrations for [event forwarding](event-forwarding/) let you push Snyk platform events directly to certain products on other platforms, so you can set up custom alerting, build your own reporting, trigger automation, and more.
[Notification and ticketing systems integrations](jira-and-slack-integrations/) help you work with Snyk in Jira and Slack.
@@ -48,7 +48,7 @@ The **Integrations** page shows all active integrations, including any data auto
The following supported Snyk data are automatically synced: Snyk Open Source, Snyk Code, Snyk IaC, Snyk Container.
-Each connected integration enables you to pause data syncing, modify integration profiles and configurations, delete the integration, or check when the integration was last synced and when the next sync is scheduled.
+Each connected integration lets you pause data syncing, modify integration profiles and configurations, delete the integration, or check when the integration was last synced and when the next sync is scheduled.
### Integrations syncing time
@@ -67,9 +67,9 @@ After you finish setting up an integration, you can see the following connection
* Setup in progress
* Connected
* Connection failed
-* x profile(s) connected
-* x/y profile(s) connected
-* x profile(s) failed
+* x profiles connected
+* x/y profiles connected
+* x profiles failed
If you encounter any of the failed statuses, check the Connection failure details list available on the integration card.
@@ -115,7 +115,7 @@ You can add an integration by following these steps:
See the [Group-level integrations](../scm-integrations/group-level-integrations/) page for step-by-step details about how to set up an integration.
-After the integration is validated, a card is displayed on the Integrations page, allowing you to enable or disable the connection, edit the settings, or remove the connection from your configuration.
+After the integration is validated, a card is displayed on the Integrations page, so you can enable or disable the connection, edit the settings, or remove the connection from your configuration.
### Using Snyk Broker
diff --git a/developer-tools/integrations/jira-and-slack-integrations/jira-integration.md b/developer-tools/integrations/jira-and-slack-integrations/jira-integration.md
index b4c9b05780ac..b9b92be86693 100644
--- a/developer-tools/integrations/jira-and-slack-integrations/jira-integration.md
+++ b/developer-tools/integrations/jira-and-slack-integrations/jira-integration.md
@@ -6,7 +6,7 @@ For Snyk Infrastructure as Code, see [Jira Integration for IaC](https://app.gitb
## Set up your Jira integration
-Snyk Jira integration allows you to manually raise Jira issues in the Snyk UI for vulnerabilities or license issues. The Jira integration also includes the API endpoints [Create jira issue](../../snyk-api/reference/jira-v1.md#org-orgid-project-projectid-issue-issueid-jira-issue) and [List all jira issues](../../snyk-api/reference/jira-v1.md#org-orgid-project-projectid-jira-issues).
+The Snyk Jira integration lets you manually raise Jira issues in the Snyk UI for vulnerabilities or license issues. The Jira integration also includes the API endpoints [Create jira issue](../../snyk-api/reference/jira-v1.md#org-orgid-project-projectid-issue-issueid-jira-issue) and [List all jira issues](../../snyk-api/reference/jira-v1.md#org-orgid-project-projectid-jira-issues).
{% hint style="info" %}
If your Jira instance is private, use [the Snyk Broker deployment method](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/classic-broker/install-and-configure-snyk-broker/jira-prerequisites-and-steps-to-install-and-configure-broker/jira-install-and-configure-using-docker).
@@ -15,7 +15,7 @@ If your Jira instance is private, use [the Snyk Broker deployment method](https:
## Prerequisites for Jira integration with Snyk
* Snyk supports Jira from version 5 to version 10.
-* The following [Jira permissions](https://confluence.atlassian.com/adminjiraserver073/managing-project-permissions-861253293.html) are required: **Browse Projects** and **Create Issues.**
+* You need the following [Jira permissions](https://confluence.atlassian.com/adminjiraserver073/managing-project-permissions-861253293.html): **Browse Projects** and **Create Issues.**
## How to set up your Jira integration
@@ -35,17 +35,17 @@ After entering the details into the integration, click **Save and continue**.
If the connection is not successful, check that the Base URL starts with exactly `https://` It must not have capitals or be http.
{% endhint %}
-If the connection is successful, you will see the connection details in orange at the top of the page.
+If the connection is successful, the connection details appear at the top of the page.
Fill in the following fields:
* Default Project (required) - Select a Jira Project from the list.
* Default Issue Type (required) - Select an issue type from the list. The list is populated from available issue types in your Project.
-* Ignored Fields (optional) - Specified fields will be excluded from the prompt users see when creating Jira issues in Snyk. For custom fields, use the [custom field id](https://confluence.atlassian.com/jirakb/find-my-custom-field-id-number-in-jira-744522503.html) in the format `customfield_XXXXXX`.
+* Ignored Fields (optional) - Snyk excludes the specified fields from the prompt users see when creating Jira issues in Snyk. For custom fields, use the [custom field id](https://confluence.atlassian.com/jirakb/find-my-custom-field-id-number-in-jira-744522503.html) in the format `customfield_XXXXXX`.
## Create a Jira issue
-After you set up the Jira integration connection, open one of your Snyk Projects in the Snyk Web UI. A new button, **Create an issue**, appears at the bottom of each vulnerability and license issue card. This button allows you to create a Jira issue.
+After you set up the Jira integration connection, open one of your Snyk Projects in the Snyk Web UI. A new button, **Create an issue**, appears at the bottom of each vulnerability and license issue card. This button lets you create a Jira issue.
Create an issue button
@@ -53,9 +53,9 @@ If the **Create an issue** button is not visible in the UI, ensure that **Group
When you select **Create an issue**, a Jira issue creation form appears. This form includes the Snyk issue details, which are copied into the associated fields. You can review and edit this form before creating the issue.
-Select the Jira project to which you want to send the issue. The fields in the example that follows are based on the fields that the specific Project has, so switching between Projects may show different options.
+Select the Jira project to which you want to send the issue. The fields in the example that follows are based on the fields that the specific Project has, so switching between Projects might show different options.
-
Create a Jira issue
+
Create a Jira issue
After you create a Jira issue, the Jira key with a link is displayed on the issue card. If you are using the Jira API, you can generate multiple Jira issues for the same issue in Snyk.
diff --git a/developer-tools/integrations/jira-and-slack-integrations/slack-app.md b/developer-tools/integrations/jira-and-slack-integrations/slack-app.md
index a3568905f250..963406760d65 100644
--- a/developer-tools/integrations/jira-and-slack-integrations/slack-app.md
+++ b/developer-tools/integrations/jira-and-slack-integrations/slack-app.md
@@ -38,23 +38,23 @@ To enable the Snyk app for Slack, you must do the following:
1. Authorize the app with Snyk to get new issues data that can be forwarded to your Slack workspace.
2. Authorize the app with your Slack workspace to allow Snyk to send notifications to your channels in the workspace.
-3. Configure the default notification settings in Snyk for all Projects in your Organization and add [Project-level notification overrides](slack-app.md#manage-project-level-notification-overrides) if you would like.
+3. Configure the default notification settings in Snyk for all Projects in your Organization and add [Project-level notification overrides](slack-app.md#manage-project-level-notification-overrides) if you want.
## Configure the Snyk app for Slack
Ensure the user performing this installation has the permission **Snyk Apps Management - Install Apps** before continuing. See [documentation for member roles](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-role-management).
1. Open the [Snyk integrations page](https://app.snyk.io/integrations), navigate to **Notifications**, and click the **Slack App** tile.
-2. You must give authorization for Snyk to access data from Slack by selecting **Authorize with Snyk**.
-3. Additional authorization is requested for Snyk to access the Snyk Slack workspace. This involves content and info about channels and conversations, as well as enabling Snyk to perform action in those channels and conversations. To proceed, select **Allow**.
+2. Authorize Snyk to access data from Slack by selecting **Authorize with Snyk**.
+3. Snyk requests additional authorization to access the Snyk Slack workspace. This involves content and info about channels and conversations, as well as enabling Snyk to perform actions in those channels and conversations. To proceed, select **Allow**.
{% hint style="info" %}
-If multiple Slack workspaces are available, a dropdown will be visible at the top right of the page. Select the desired Slack workspace.
+If multiple Slack workspaces are available, a dropdown appears at the top right of the page. Select the desired Slack workspace.
{% endhint %}
You can configure the integration to provide a Slack channel ID for the channel where issue notifications for the Organization are sent, and also filter by severity level.
-To find the channel ID of a Slack Channel, open Slack, right-click on the channel name, select **View channel details**, then scroll down to the bottom of the window where you will see the channel ID, for example, C2TB2222N.
+To find the channel ID of a Slack Channel, open Slack, right-click on the channel name, select **View channel details**, then scroll down to the bottom of the window where the channel ID appears, for example, C2TB2222N.
To add the Snyk for Slack app to a private channel, you must first add the app manually to the channel from within Slack and then select the channel within the Snyk integration. In the Private channel, select **Channel settings - Integrations**, and then **Add an app**. Search for **Snyk for Slack** and select **add**. After you have done this, the channel is displayed on the **Settings** page for the integration.
@@ -62,8 +62,8 @@ If you are a Slack Admin, you can manually add the Snyk for Slack app to a priva
## Issue notifications
-After the Slack app has been configured, new issue notifications are forwarded to the selected Slack channel according to the desired severity level threshold.\
-New issue notifications may take up to an hour to start propagating to your Slack workspace after it is configured.
+After you configure the Slack app, new issue notifications are forwarded to the selected Slack channel according to the desired severity level threshold.\
+New issue notifications can take up to an hour to start propagating to your Slack workspace after it is configured.
Example of a new critical vulnerability notification received in Slack
@@ -114,7 +114,7 @@ To interact with the Project-level notification customization endpoints, you mus
`GET /orgs/{org_id}/app_bots`
{% hint style="info" %}
-Ensure you apply the `expand=app` query string on your request. This enables you to find the Bot for the related Snyk App named **Slack App**.
+Ensure you apply the `expand=app` query string on your request. This lets you find the Bot for the related Snyk App named **Slack App**.
{% endhint %}
#### Find your Project ID
@@ -145,6 +145,6 @@ After retrieving the `org_id`, `bot_id`, and `project_id` values, you can use th
## Remove the Snyk app for Slack
-To remove the Snyk app for Slack, navigate to the settings page, locate **Remove Slack Snyk app** at the bottom of the page, and click the **Disconnect Slack** button:
+To remove the Snyk app for Slack, navigate to the settings page, locate **Remove Slack Snyk app** at the bottom of the page, and click **Disconnect Slack**:
Remove Slack App integration
diff --git a/developer-tools/integrations/jira-and-slack-integrations/slack-integration.md b/developer-tools/integrations/jira-and-slack-integrations/slack-integration.md
index 73a4e4efe0db..f8cf22db4493 100644
--- a/developer-tools/integrations/jira-and-slack-integrations/slack-integration.md
+++ b/developer-tools/integrations/jira-and-slack-integrations/slack-integration.md
@@ -4,10 +4,10 @@
Snyk recommends that all customers use the [Slack App](slack-app.md), as the Slack integration is outdated.
{% endhint %}
-You can set up Slack to receive Snyk’s alerts about new vulnerabilities that affect your Projects and new upgrades or patches that have become available.
+You can set up Slack to receive Snyk alerts about new vulnerabilities that affect your Projects and new upgrades or patches that have become available.
{% hint style="info" %}
-Vulnerabilities detected on initial import of projects are not sent to Slack immediately.
+Vulnerabilities detected on initial import of Projects are not sent to Slack immediately.
{% endhint %}
## Slack notification types
@@ -22,9 +22,9 @@ A new upgrade or patch is available for a vulnerability that you previously igno
## Set up the Slack integration
-To set up the integration, you must generate a Slack webhook. You can do this either via the [Incoming WebHooks app](https://slack.com/apps/A0F7XDUAZ-incoming-webhooks) or by [creating your own Slack app](https://api.slack.com/incoming-webhooks).
+To set up the integration, you must generate a Slack webhook. You can do this either using the [Incoming WebHooks app](https://slack.com/apps/A0F7XDUAZ-incoming-webhooks) or by [creating your own Slack app](https://api.slack.com/incoming-webhooks).
-Once you have generated your Slack Webhook URL, go to your **Manage Organization** settings and enter the URL.
+After you generate your Slack Webhook URL, navigate to your **Manage Organization** settings and enter the URL.
Enter URL of the Slack webhook
diff --git a/developer-tools/integrations/jira-and-slack-integrations/snyk-security-in-jira-cloud-integration.md b/developer-tools/integrations/jira-and-slack-integrations/snyk-security-in-jira-cloud-integration.md
index e592ca382bd7..89f512e97f85 100644
--- a/developer-tools/integrations/jira-and-slack-integrations/snyk-security-in-jira-cloud-integration.md
+++ b/developer-tools/integrations/jira-and-slack-integrations/snyk-security-in-jira-cloud-integration.md
@@ -22,7 +22,7 @@ To connect the Jira app to Snyk, you must be a [Snyk Organization administrator]
To activate Security in Jira Cloud in Jira, navigate to **Project Settings > Features > Development > Security** and toggle **Security** **ON**.
-Ensure you have the following permission scopes in Jira, which are required for the integration to operate.
+Ensure you have the following permission scopes in Jira, which the integration needs to operate.
Required scope in Jira
Purpose
Write data to the host application
Synchronize vulnerabilities in Snyk with Jira so they appear in the Security tab in Jira.
Read data from the host application
Read vulnerabilities from Jira to optimize the issues synchronization process.
Delete data from the host application
Remove vulnerabilities from Jira when a Snyk Organization is removed from Jira.
@@ -59,8 +59,8 @@ Typically research and development engineering managers do this task because the
{% endhint %}
1. In Jira, navigate to your **Project** and select the **Security** tab.
-2. Click the **Connect security containers** button.
-3. Click on the Snyk application and then select **Connect security containers**.
+2. Click **Connect security containers**.
+3. Click the Snyk application and then select **Connect security containers**.
Connect security containers in Jira via the Security tab and panels
4. Select your Snyk Organization from the list, and choose the Snyk Targets to connect to Jira.
@@ -70,11 +70,11 @@ Typically research and development engineering managers do this task because the
Developers can now use the security feature to view recent vulnerabilities found in the linked code repositories and start [creating Jira issues](snyk-security-in-jira-cloud-integration.md#create-a-jira-issue-from-a-vulnerability) from those vulnerabilities or [linking them to existing Jira issues](snyk-security-in-jira-cloud-integration.md#link-an-existing-jira-issue-to-a-vulnerability).
{% hint style="info" %}
-Issue syncing between Snyk and Jira happens asynchronously, meaning there may be a delay before issues appear in Jira.
+Issue syncing between Snyk and Jira happens asynchronously, meaning there might be a delay before issues appear in Jira.
{% endhint %}
{% hint style="info" %}
-Only **security vulnerabilities** will be shown on the Jira Security tab.
+Only **security vulnerabilities** are shown on the Jira Security tab.
{% endhint %}
### Deleting a target or repository
@@ -82,15 +82,15 @@ Only **security vulnerabilities** will be shown on the Jira Security tab.
To delete a target or repository from Snyk that you have connected to Jira, you must first delete the container code repository in Jira, through the **Security** panel in each Jira Project. Then you can remove the target or repository from Snyk:
1. In Jira, navigate to your **Project** and select the **Security** tab.
-2. Click on the **Connect security containers** button.
-3. Click on the Snyk application
+2. Click **Connect security containers**.
+3. Click the Snyk application
4. Select the security container you want to remove from the list using the **Remove connection** option
Remove connected security containers in the Jira Security panel
## Automate ticket creation in Jira
-The following steps describe how to use Jira automation to automatically create tickets for Snyk Vulnerabilities:
+The following steps describe how to use Jira automation to automatically create tickets for Snyk vulnerabilities:
1. In Jira, in your project, navigate to **Project Settings** and then **Automation**.
2. Click **Create Rule**.
@@ -126,7 +126,7 @@ Select the title of a column in the table to sort all vulnerabilities by that at
When triaging issues, you can add a Jira issue to the sprint or backlog to ensure the required work for resolving the vulnerability is planned and tracked.
-Snyk provides vulnerability information to Jira, enabling users to have comprehensive data for resolving issues.
+Snyk provides vulnerability information to Jira, giving users comprehensive data for resolving issues.
To add a Jira issue, navigate to the Snyk Security tab, find a vulnerability, and click **Create issue**.
@@ -141,7 +141,7 @@ If the vulnerability already has a Jira issue, you can link the vulnerability to
These steps describe how to use Jira automation and JQL to automatically close or change the status of tickets for vulnerabilities that are now in a closed state.
1. In Jira on your Project, navigate to **Project Settings** and then **Automation.**
-2. Click he **Create Rule** button.
+2. Click **Create Rule**.
3. Click **Scheduled** and then **Scheduled**.
Add Scheduled trigger
@@ -160,16 +160,16 @@ These steps describe how to use Jira automation and JQL to automatically close o
6. Now that the setup is complete, give it a name and click on **Turn on rule.**
-Now, according to your schedule, Jira will search for any issues for which the vulnerability is closed, but the issues are not closed, and close each Jira issue.
+Now, according to your schedule, Jira searches for any issues for which the vulnerability is closed but the issues are not closed, and closes each Jira issue.
## Uninstall Snyk Security in Jira Cloud
{% hint style="warning" %}
-Uninstalling Snyk Security in Jira Cloud will disconnect Snyk vulnerabilities from their associated Jira issues.\
+Uninstalling Snyk Security in Jira Cloud disconnects Snyk vulnerabilities from their associated Jira issues.\
\
To uninstall a Jira app, you must be an administrator in the site-admins, administrators, or jira-administrators groups.
{% endhint %}
1. In Jira, navigate to **Apps** in the main menu and select **Manage your apps.**
2. Select **Snyk Security in Jira.**
-3. Click the **Uninstall** button.
+3. Click **Uninstall**.
diff --git a/developer-tools/integrations/partner-integrations.md b/developer-tools/integrations/partner-integrations.md
index da31fdb3464b..62e7766d884f 100644
--- a/developer-tools/integrations/partner-integrations.md
+++ b/developer-tools/integrations/partner-integrations.md
@@ -129,7 +129,7 @@ To see the documentation for each integration, click on the integration name in
## Identity correlation
-Tracking SLDC workflows and vulnerabilities per developer/user.
+Tracking SDLC workflows and vulnerabilities per developer/user.
To see the documentation for each integration, click on the integration name in the table.
@@ -206,7 +206,7 @@ To see the documentation for each integration, click on the integration name in
| Integration | Description |
| ------------------------------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------- |
-| [ServiceNow: Snyk Vulnerbility Intelligence for SBOM](https://store.servicenow.com/store/app/994d67e21b646a50a85b16db234bcb56) | Vulnerability Intelligence for ServiceNow SBOM allows you to efficiently prioritize and remediate vulnerabilities in the components identified in your SBOMs. |
+| [ServiceNow: Snyk Vulnerability Intelligence for SBOM](https://store.servicenow.com/store/app/994d67e21b646a50a85b16db234bcb56) | Vulnerability Intelligence for ServiceNow SBOM allows you to efficiently prioritize and remediate vulnerabilities in the components identified in your SBOMs. |
## Ticketing and workflow
diff --git a/developer-tools/scan-with-snyk/snyk-tools/README.md b/developer-tools/scan-with-snyk/snyk-tools/README.md
index 3363ba1734d3..ef25f0555700 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/README.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/README.md
@@ -2,7 +2,7 @@
## Scope of Snyk Tools
-Snyk Tools help with specific pain points that may not be addressed by Snyk product functionality, regardless of whether you use Snyk through the Web UI, CLI, API, or an integration. Snyk Tools extend the functions of the Snyk API and the Snyk CLI.
+Snyk Tools help with specific pain points that Snyk product functionality might not address, regardless of whether you use Snyk through the Web UI, CLI, API, or an integration. Snyk Tools extend the functions of the Snyk API and the Snyk CLI.
{% hint style="info" %}
You must have a [Snyk Account](https://snyk.io/login?cta=sign-up\&loc=nav\&page=support_docs_page) with populated Projects to use Snyk Tools.
@@ -32,7 +32,7 @@ Refer to the repositories for instructions on how to use the following additiona
* [snyk-user-sync-tool](https://github.com/snyk-tech-services/snyk-user-sync-tool): Add, remove, and sync user memberships.
* [snyk-licenses-texts](https://github.com/snyk-tech-services/snyk-licenses-texts): Provides Organization-level licenses used, copyrights (until January 8, 2024), and dependencies data.
* [snyk-request-manager](https://github.com/snyk-tech-services/snyk-request-manager): Rate-controlled and retry-enabled request manager to interact with Snyk APIs.
-* [snyk-repo-issue-tracker](https://github.com/snyk-tech-services/snyk-repo-issue-tracker): A python script/module that allows for generating a changeset of issues between runs against the Snyk Project issues API.
+* [snyk-repo-issue-tracker](https://github.com/snyk-tech-services/snyk-repo-issue-tracker): A python script/module that generates a changeset of issues between runs against the Snyk Project issues API.
* [snyk-repo-diff:](https://github.com/snyk-tech-services/snyk-repo-diff) Helps determine which repositories are not monitored by Snyk.
This works by retrieving a list of all Projects in a given Snyk Group, that is, all Projects in all Organizations belonging to the same Snyk Group, and associating them with a list of repositories found in a given GitHub Organization.
diff --git a/developer-tools/scan-with-snyk/snyk-tools/python-code-to-extract-issues-from-snyk-api.md b/developer-tools/scan-with-snyk/snyk-tools/python-code-to-extract-issues-from-snyk-api.md
index 0d80d8eb9e56..d34723e400ff 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/python-code-to-extract-issues-from-snyk-api.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/python-code-to-extract-issues-from-snyk-api.md
@@ -1,3 +1,3 @@
# Python code to extract issues from Snyk API
-Snyk has an unsupported Python client that can be used to get issues using the V1 API: [https://github.com/snyk-labs/pysnyk](https://github.com/snyk-labs/pysnyk).
+Snyk has an unsupported Python client you can use to get issues using the V1 API: [https://github.com/snyk-labs/pysnyk](https://github.com/snyk-labs/pysnyk).
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-jira-tickets-for-new-vulns.md b/developer-tools/scan-with-snyk/snyk-tools/tool-jira-tickets-for-new-vulns.md
index f0115337eda1..2220d2479bdc 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-jira-tickets-for-new-vulns.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-jira-tickets-for-new-vulns.md
@@ -1,6 +1,6 @@
# Tool: jira-tickets-for-new-vulns
-`jira-tickets-for-new-vulns` provides the means to sync your Snyk-monitored projects and automatically open Jira tickets for new issues and existing issue(s) without ticket(s) already created.
+`jira-tickets-for-new-vulns` provides the means to sync your Snyk-monitored Projects and automatically open Jira tickets for new issues and existing issues without tickets already created.
Cron it every X minutes/hours and fix the issues. This tool is aimed to be executed at regular intervals or with a trigger of your choice (webhooks).
@@ -45,7 +45,7 @@ Use the binaries from [the release page](https://github.com/snyk-tech-services/j
## Restrictions
-The tool does not support infrastructure as code projects. It opens an issue only for code and open source projects and ignores all other project types.
+The tool does not support infrastructure as code Projects. It opens an issue only for code and open source Projects and ignores all other Project types.
**Priority is severity**
@@ -70,7 +70,7 @@ git clone the repo, build:
> `go run main.go jira.go jira_utils.go vulns.go snyk.go snyk_utils.go`
-Please report issues.
+Report issues.
## Dependencies
@@ -143,4 +143,4 @@ jira:
* The token is not expected to be present in the config file.
* Command line arguments override the config file. Example: Using the config file above, running `./snyk-jira-sync-macOs --Org=1234 --configFile=./path/to/folder --token=123` the org ID used by the tool will be 1234 and not a1b2c3de-99b1-4f3f-bfdb-6ee4b4990513.
* See 'Extended options' for default values.
-* Ensure you use the same issue type that is configured in your Jira. Default is Bug. Verify the type is use (or default) exists in your Jira configuration.
+* Ensure you use the same issue type that is configured in your Jira. Default is Bug. Verify the type in use (or default) exists in your Jira configuration.
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/README.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/README.md
index e41fb3a5192f..3cfb59f35ea9 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/README.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/README.md
@@ -8,10 +8,10 @@ The Snyk API Project importer, `snyk-api-import`, is a script intended to help i
If you need to adjust concurrency, you can stop the script, change the concurrency variable, and start again. The tool skips previous repositories (Targets) that have been requested for import.
-To use `snyk-api-import` you must do the following in advance:
+To use `snyk-api-import` you must do the following first:
* Set up your Snyk Organizations (Orgs) before running an import.
-* Configure your Snyk Organizations with some connection to an SCM (GitHub, GitLab, Bitbucket, other) as you will need the `integrationId` to generate the import files.
+* Configure your Snyk Organizations with some connection to an SCM (GitHub, GitLab, Bitbucket, other) as you need the `integrationId` to generate the import files.
* Use the [Set notification settings](../../../snyk-api/reference/organizations-v1.md#org-orgid-notification-settings) API endpoint to disable notifications for emails and so on, to avoid receiving import notifications (recommended).
* Use the [Update](../../../snyk-api/reference/integrations-v1.md#org-orgid-integrations-integrationid-settings) (integration settings) endpoint to disable the fix PRs and PR checks until import is complete to avoid sending extra requests to SCMs (GitHub, GitLab, Bitbucket, and so on).
@@ -39,7 +39,7 @@ yarn global add snyk-api-import
## Usage
-By default the `import` command will run if no command is specified.
+By default the `import` command runs if no command is specified.
* `import` - kick off an API-powered import of repos (Targets) into existing Snyk Organizations defined in the import configuration file. All support available for all Project types is provided through the [Import](../../../snyk-api/reference/import-projects-v1.md) API endpoints, [Import targets](../../../snyk-api/reference/import-projects-v1.md#org-orgid-integrations-integrationid-import) and [Get Import job details](../../../snyk-api/reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid).
* `help` - show help and all available commands and their options.
@@ -70,9 +70,9 @@ The logs can be explored using the [Bunyan CLI](http://trentm.com/node-bunyan/bu
Error: ENFILE: file table overflow, open or Error: EMFILE, too many open files
-If you see these errors, you may need to bump **ulimit** to allow more open file operations. In order to keep the operations performing well, the tool logs as soon as it is convenient rather than waiting until the very end of a loop and logging a huge data structure. This means that depending on the number of concurrent imports set, the tool may exceed the system default **ulimit**.
+If you see these errors, you might need to bump **ulimit** to allow more open file operations. To keep the operations performing well, the tool logs as soon as it is convenient rather than waiting until the end of a loop and logging a huge data structure. This means that depending on the number of concurrent imports set, the tool might exceed the system default **ulimit**.
-Some of these resources may help you bump the **ulimit**:
+Some of these resources can help you bump the **ulimit**:
* [ss64.com](https://ss64.com/bash/ulimit.html)
* [StackOverflow](https://stackoverflow.com/questions/45004352/error-enfile-file-table-overflow-scandir-while-run-reaction-on-mac)
@@ -94,7 +94,7 @@ If your GitHub, GitLab, Bitbucket, or Azure instance is using a self-signed cert
Does this work with brokered integrations?
-Yes. Because Snyk reuses the existing integration with your SCM (Git) repository to perform the imports, the brokered connection will be used when configured.
+Yes. Because Snyk reuses the existing integration with your SCM (Git) repository to perform the imports, the brokered connection is used when configured.
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/contributing-to-snyk-api-import.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/contributing-to-snyk-api-import.md
index a8912c47be52..6bfc65493008 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/contributing-to-snyk-api-import.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/contributing-to-snyk-api-import.md
@@ -2,7 +2,7 @@
## Contributor Agreement
-A pull-request will only be considered for merging into the upstream codebase after you have signed Snyk's contributor agreement, assigning to Snyk the rights to the contributed code and granting you a license to use it in return. If you submit a pull request, you will be prompted to review and sign the agreement with one click (Snyk uses [CLA assistant](https://cla-assistant.io/)).
+Snyk considers a pull request for merging into the upstream codebase only after you have signed the Snyk contributor agreement, assigning to Snyk the rights to the contributed code and granting you a license to use it in return. If you submit a pull request, Snyk prompts you to review and sign the agreement with one click (Snyk uses [CLA assistant](https://cla-assistant.io/)).
## Pull requests
@@ -16,7 +16,7 @@ fix: minified scripts being removed
Also includes tests
```
-This allows for the automatic change log to generate correctly.
+This lets the automatic change log generate correctly.
Commit types must be one of the following:
@@ -40,10 +40,10 @@ Ensure that your code adheres to the included `.eslintrc` config by running `npm
* New command line options are generally discouraged unless there's a _really_ good reason.
* Add tests for newly added code (and try to mirror directory and file structure if possible).
* Spell check.
-* PRs will not be code reviewed unless all tests are passing.
+* PRs are not code reviewed unless all tests are passing.
{% hint style="info" %}
-When fixing a bug, commit a failing test first so that CircleCI (or the approver) can show the code failing. Once that commit is in place, then commit the bug fix so that Snyk can test before and after.
+When fixing a bug, commit a failing test first so that CircleCI (or the approver) can show the code failing. After that commit is in place, commit the bug fix so that Snyk can test before and after.
{% endhint %}
-Remember that you're developing for multiple platforms and versions of Node.js, so if the tests pass on your Mac or Linux or Windows machine, the tests may not pass elsewhere.
+Remember that you're developing for multiple platforms and versions of Node.js, so if the tests pass on your Mac or Linux or Windows machine, the tests might not pass elsewhere.
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-import-targets-data-for-import-command.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-import-targets-data-for-import-command.md
index d0b064dcbd1d..0fe42bcd213d 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-import-targets-data-for-import-command.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-import-targets-data-for-import-command.md
@@ -34,7 +34,7 @@ You need the organizations data in JSON as an input to this command to help map
}
```
-Note: the `"name`" of the GitHub or GitHub Enterprise Organization is required in order to list all repos belonging to that Organization using the GitHub API. The Snyk-specific data accompanying that Organization name will be used as the information to generate import data, assuming all repos in that Organization will be imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
+Note: the `"name`" of the GitHub or GitHub Enterprise Organization is required to list all repos belonging to that Organization using the GitHub API. Snyk uses the Snyk-specific data accompanying that Organization name to generate import data, assuming all repos in that Organization are imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
* You can list GitHub and GitHub Enterprise organizations using the GitHub [/orgs API](https://docs.github.com/en/free-pro-team@latest/rest/reference/orgs).
* You can list integrations using the Snyk API endpoint [List](../../../snyk-api/reference/integrations-v1.md#org-orgid-integrations-1) (integrations).
@@ -68,7 +68,7 @@ You need the organization's data in JSON as an input to this command to help map
}
```
-Note: the "name" of the GitLab Group is required in order to list all projects belonging to that group using the GitLab API. The Snyk-specific data accompanying that Group name will be used as the information to generate import data assuming all projects in that group will be imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
+Note: the "name" of the GitLab Group is required to list all projects belonging to that group using the GitLab API. Snyk uses the Snyk-specific data accompanying that Group name to generate import data, assuming all projects in that group are imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
* GitLab Groups can be listed using the GitLab [/groups API](https://docs.gitlab.com/ee/api/groups.html)
* You can list integrations using the Snyk API endpoint [List](../../../snyk-api/reference/integrations-v1.md#org-orgid-integrations-1) (integrations).
@@ -104,7 +104,7 @@ You need the organizations data in JSON as an input to this command to help map
}
```
-Note: the "name" of the Azure organization is required in order to list all projects and repos belonging to that organization using the Azure API. The Snyk-specific data accompanying that organization name will be used as the information to generate import data assuming all projects in that organization will be imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
+Note: the "name" of the Azure organization is required to list all projects and repos belonging to that organization using the Azure API. Snyk uses the Snyk-specific data accompanying that organization name to generate import data, assuming all projects in that organization are imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
* Your Org name in Azure is listed on the left pane in the [Azure-Devops-site](https://dev.azure.com/)
* You can list integrations using the Snyk API endpoint [List](../../../snyk-api/reference/integrations-v1.md#org-orgid-integrations-1) (integrations).
@@ -140,7 +140,7 @@ You need the organizations data in JSON as an input to this command to help map
}
```
-Note: the "name" of the Bitbucket server project is required in order to list all repos belonging to that project using the Bitbucket server API. The Snyk-specific data accompanying that project name will be used as the information to generate import data, assuming all repos in that project will be imported into a given Snyk Organization. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
+Note: the "name" of the Bitbucket server project is required to list all repos belonging to that project using the Bitbucket server API. Snyk uses the Snyk-specific data accompanying that project name to generate import data, assuming all repos in that project are imported into a given Snyk Organization. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
* Bitbucket Server Projects can be listed using the BitBucket [/projects API](https://docs.atlassian.com/bitbucket-server/rest/7.19.2/bitbucket-rest.html).
* You can list integrations using the Snyk API endpoint [List](../../../snyk-api/reference/integrations-v1.md#org-orgid-integrations-1) (integrations).
@@ -175,7 +175,7 @@ You need the organizations data in JSON as an input to this command to help map
}
```
-Note: the "name" of the Bitbucket Cloud workspace is required in order to list all repositories belonging to that workspace using the Bitbucket Cloud API. The Snyk-specific data accompanying that workspace name will be used as the information to generate import data assuming all repositories in that workspace will be imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
+Note: the "name" of the Bitbucket Cloud workspace is required to list all repositories belonging to that workspace using the Bitbucket Cloud API. Snyk uses the Snyk-specific data accompanying that workspace name to generate import data, assuming all repositories in that workspace are imported into a given Snyk Organization. This utility is opinionated. If you want to customize the import data, create it manually as described on [Kicking off an import](kicking-off-an-import.md).
* Bitbucket Cloud workspaces can be listed using the BItBucket [/workspaces API](https://developer.atlassian.com/cloud/bitbucket/rest/api-group-workspaces/#api-group-workspaces).
* You can list integrations using the Snyk API endpoint [List](../../../snyk-api/reference/integrations-v1.md#org-orgid-integrations-1) (integrations).
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-organizations-in-snyk.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-organizations-in-snyk.md
index ad83639f9b7e..04603018acee 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-organizations-in-snyk.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/creating-organizations-in-snyk.md
@@ -13,13 +13,13 @@ This page has instructions for creating Organizations (Orgs) in Snyk:
* [Using the `orgs:create` utility](creating-organizations-in-snyk.md#using-the-orgs-create-utility)
* [Recommendations](creating-organizations-in-snyk.md#recommendations)
-Before an import can begin you must set up Snyk with the Organizations you will populate with Projects.
+Before an import can begin, you must set up Snyk with the Organizations you populate with Projects.
-Snyk recommends that you have as many Organizations in Snyk as you have in the source you are importing from. For GitHub, this means mirroring the GitHub organizations in Snyk. The `snyk-api-import` tool provides a utility to use to make this simpler when using Groups and Organizations in Snyk.
+Snyk recommends that you have as many Organizations in Snyk as you have in the source you are importing from. For GitHub, this means mirroring the GitHub organizations in Snyk. The `snyk-api-import` tool provides a utility to make this simpler when using Groups and Organizations in Snyk.
## Generating the data required to create Organizations in Snyk with the `orgs:data` utility
-This utility helps generate data needed to mirror the GitHub.com, GitHub Enterprise, GitLab, Bitbucket Server, or Bitbucket Cloud organization structure in Snyk. This opinionated utility will assume every organization in GitHub.com, GitHub Enterprise, GitLab, Bitbucket Server, or Bitbucket Cloud should become an Organization in Snyk. If this is not what you are looking for, consider using the API endpoint [Create a new organization](../../../snyk-api/reference/organizations-v1.md#org) directly to create the structure you need.
+This utility helps generate data needed to mirror the GitHub.com, GitHub Enterprise, GitLab, Bitbucket Server, or Bitbucket Cloud organization structure in Snyk. This opinionated utility assumes every organization in GitHub.com, GitHub Enterprise, GitLab, Bitbucket Server, or Bitbucket Cloud should become an Organization in Snyk. If this is not what you are looking for, consider using the API endpoint [Create a new organization](../../../snyk-api/reference/organizations-v1.md#org) directly to create the structure you need.
### Options
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/kicking-off-an-import.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/kicking-off-an-import.md
index 0e280b498ca5..9ae4af1265ad 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/kicking-off-an-import.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/kicking-off-an-import.md
@@ -1,8 +1,8 @@
# Kicking off an import
-`snyk-api-import` supports the same Project sources that you can import using the Snyk API: Git repositories, Docker images, containers, configuration files and much more. You can configure integrations using the Integrations settings on your Snyk Organization settings page. For more information, see the definition of [Target](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-projects#target) on the Snyk Projects documentation page.
+`snyk-api-import` supports the same Project sources that you can import using the Snyk API: Git repositories, Docker images, containers, configuration files, and much more. You can configure integrations using the Integrations settings on your Snyk Organization settings page. For more information, see the definition of [Target](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-projects#target) on the Snyk Projects documentation page.
-Note that any logs will be generated at `SNYK_LOG_PATH` directory.
+Note that Snyk generates any logs in the `SNYK_LOG_PATH` directory.
The steps to start an import follow.
@@ -40,9 +40,9 @@ Each **import target** has the following keys:
* `exclusionGlobs` - Comma-separated list of up to ten folder names to exclude from scanning (each folder name must not exceed 100 characters). If not specified, defaults to "fixtures, tests, tests, node\_modules". If an empty string is provided, no folders will be excluded.
* `files` - An object array. Each path must be the full relative path to the file from the root of the Target. Only those files found at that location will be imported.
-Note that for a repository that may have 200+ manifest files, Snyk recommends that you split the import into multiple imports by targeting specific files. Importing hundreds of files at once from one repository can cause the import to result in some errors or failures.
+Note that for a repository that has 200+ manifest files, Snyk recommends that you split the import into multiple imports by targeting specific files. Importing hundreds of files at once from one repository can cause the import to result in some errors or failures.
-Splitting the import to import some files or some folders only will benefit from the re-tries and produce a smaller load on the source control management system being used. Populate the `files` property to accomplish this in the import JSON.
+Splitting the import to import some files or some folders only benefits from the re-tries and produces a smaller load on the source control management system being used. Populate the `files` property to accomplish this in the import JSON.
If you have any tests or fixtures that should be ignored, set the `exclusionGLobs` property:
@@ -168,20 +168,20 @@ Download a binary from the [releases page](https://github.com/snyk/snyk-api-impo
### **Skip all previously imported targets**
-This utility can be used to skip previously imported Targets (repos), so only remaining Targets will be imported.
+You can use this utility to skip previously imported Targets (repos), so Snyk imports only the remaining Targets.
-The utility helps generate the `imported-targets.log` file by analyzing the Projects already in a given Snyk Group. When present in the logging path, this file is used to look up Targets that should be skipped during the import.
+The utility helps generate the `imported-targets.log` file by analyzing the Projects already in a given Snyk Group. When present in the logging path, this file looks up Targets to skip during the import.
### Example
-* All GitHub repositories have been imported into Snyk into their respective Organizations during initial onboarding.
+* All GitHub repositories are imported into Snyk into their respective Organizations during initial onboarding.
* New GitHub repositories have since been added and now need to be added to Snyk.
* To avoid importing everything again, you can use this utility and run `import` again to import only "new" GitHub repositories. This is much faster and removes unnecessary calls to Snyk and GitHub to fetch files and do the import for everything again.
### Importing the same Target
-* The same Target imported into a different Organization can be imported.
-* The same Target from a different source can be imported; for example, the same repository that is present in GitHub can now be imported through GitHub Enterprise into the same Organization.
+* You can import the same Target into a different Organization.
+* You can import the same Target from a different source. For example, you can now import the same repository that is present in GitHub through GitHub Enterprise into the same Organization.
### Command to run
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-cloud-organizations-and-repos-in-snyk.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-cloud-organizations-and-repos-in-snyk.md
index 3ab074636f3b..b8b3a3d27304 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-cloud-organizations-and-repos-in-snyk.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-cloud-organizations-and-repos-in-snyk.md
@@ -14,7 +14,7 @@ Refer to individual documentation pages for detailed information. The general st
## Re-importing new repos and Orgs only while mirroring
-Once initial import is complete you can periodically check for new repos and make sure they are added into Snyk by following these steps, which are similar to the preceding steps to import repos.
+After the initial import is complete, you can periodically check for new repos and ensure they are added to Snyk by following these steps, which are similar to the preceding steps to import repos.
1. `export BITBUCKET_CLOUD_USERNAME=***`, `export BITBUCKET_CLOUD_PASSWORD=***` and `export SNYK_TOKEN=***`
2. Generate organization data in Snyk and skip any that do not have any repos by using `--skipEmptyOrg` `snyk-api-import orgs:data --source=bitbucket-cloud --groupId= --skipEmptyOrg` Full instructions: [Creating organizations in Snyk](creating-organizations-in-snyk.md)
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-server-organizations-and-repos-in-snyk.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-server-organizations-and-repos-in-snyk.md
index 69bec2f95be7..645e31719757 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-server-organizations-and-repos-in-snyk.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-bitbucket-server-organizations-and-repos-in-snyk.md
@@ -1,6 +1,6 @@
# Mirroring Bitbucket Server organizations and repos in Snyk
-You can use four commands in the available utils to import the entirety of Bitbucket Server repos into Snyk. You must configure both the both the Bitbucket Server token and Snyk token as environment variables to proceed.
+You can use four commands in the available utils to import the entirety of Bitbucket Server repos into Snyk. You must configure both the Bitbucket Server token and Snyk token as environment variables to proceed.
## General steps to import Bitbucket Server repos
@@ -14,7 +14,7 @@ Refer to individual documentation pages for detailed information. The general st
## Re-importing new repos and Orgs only while mirroring
-Once initial import is complete you can periodically check for new repos and make sure they are added into Snyk by following these steps, which are similar to the preceding steps to import repos.
+After the initial import is complete, you can periodically check for new repos and ensure they are added to Snyk by following these steps, which are similar to the preceding steps to import repos.
1. `export BITBUCKET_SERVER_TOKEN=***` and `export SNYK_TOKEN=***`
2. Generate organization data in Snyk and skip any that do not have any repos by using `--skipEmptyOrg` `snyk-api-import orgs:data --source=bitbucket-server --groupId= --skipEmptyOrg` Full instructions: [Creating organizations in Snyk](creating-organizations-in-snyk.md)
diff --git a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-gitlab-organizations-and-repos-in-snyk.md b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-gitlab-organizations-and-repos-in-snyk.md
index d6a0a4b936d8..5962ad1feb38 100644
--- a/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-gitlab-organizations-and-repos-in-snyk.md
+++ b/developer-tools/scan-with-snyk/snyk-tools/tool-snyk-api-import/mirroring-gitlab-organizations-and-repos-in-snyk.md
@@ -14,7 +14,7 @@ Refer to individual documentation pages for detailed information. The general st
## Re-importing new repos and Orgs only while mirroring
-Once initial import is complete you can periodically check for new repos and make sure they are added into Snyk by following these steps, which are similar to the preceding steps to import repos.
+After the initial import is complete, you can periodically check for new repos and ensure they are added to Snyk by following these steps, which are similar to the preceding steps to import repos.
1. `export GITLAB_TOKEN=***` and `export SNYK_TOKEN=***`
2. Generate organization data in Snyk and skip any that do not have any repos by using `--skipEmptyOrg` `snyk-api-import orgs:data --source=gitlab --groupId= --skipEmptyOrg` Full instructions: [Creating organizations in Snyk](creating-organizations-in-snyk.md)
diff --git a/developer-tools/scm-integrations/README.md b/developer-tools/scm-integrations/README.md
index 12f857da9b6b..744691b1e415 100644
--- a/developer-tools/scm-integrations/README.md
+++ b/developer-tools/scm-integrations/README.md
@@ -1,8 +1,8 @@
# SCMs
-Snyk supports SCM integrations that allow you to implement security at each point in your workflow: importing a Project, writing your code, and building and deployment. Snyk can also [automatically create pull requests (PRs)](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/snyk-pull-or-merge-requests/enable-automatic-upgrade-prs-for-new-dependency-upgrades) on your behalf to upgrade your dependencies based on scan results, compatible with a variety of SCM integrations.
+Snyk supports SCM integrations that let you implement security at each point in your workflow: importing a Project, writing your code, and building and deployment. Snyk can also [automatically create pull requests (PRs)](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/snyk-pull-or-merge-requests/enable-automatic-upgrade-prs-for-new-dependency-upgrades) on your behalf to upgrade your dependencies based on scan results, compatible with a variety of SCM integrations.
-Snyk Source Control Manager (SCM) integrations allow you to:
+Snyk Source Control Manager (SCM) integrations let you:
* Continuously perform security scanning across all integrated repositories
* Detect vulnerabilities in your open-source components
@@ -25,7 +25,7 @@ If you have added the GitHub integration at Organizational and/or Group levels a
This feature is available for GitHub, GitHub Enterprise, GitHub Cloud App, GitLab, Bitbucket Server, Bitbucket Cloud App, Bitbucket Cloud (Legacy), and Azure Repos (TFS) integrations.
{% endhint %}
-The Workspaces feature enables Snyk to ingest a temporary snapshot of repository contents, and all commit metadata through your configured SCM integrations.
+The Workspaces feature enables Snyk to ingest a temporary snapshot of repository contents and all commit metadata through your configured SCM integrations.
For detailed information on this feature, including enablement steps, see [Workspaces for SCM integrations](workspaces.md).
@@ -35,7 +35,7 @@ If you are an Enterprise customer, see [Choose rollout integrations](https://app
### GitHub vs GitHub Enterprise
-As an Enterprise plan user, Snyk recommends using the GitHub Enterprise integration as it enables you to use a single GitHub service account personal access token (PAT) across your Snyk Organization rather than depending on a PAT for an individual user account. You can use this integration whether or not you have a GitHub Enterprise (GHE) license or subscription.
+As an Enterprise plan user, Snyk recommends using the GitHub Enterprise integration as it lets you use a single GitHub service account personal access token (PAT) across your Snyk Organization rather than depending on a PAT for an individual user account. You can use this integration whether or not you have a GitHub Enterprise (GHE) license or subscription.
Another benefit to using the GitHub Enterprise integration is that you can choose to clone integration settings when you are creating new Snyk Organizations. This means you can use one GitHub Enterprise integration for all Organizations in your Snyk Group.
@@ -55,9 +55,9 @@ See [Migrate to the Snyk Bitbucket Cloud App](organization-level-integrations/bi
#### Main capabilities unlocked by the new app integration
-* Allows using Snyk with Bitbucket's [allowlisting IP addresses](https://support.atlassian.com/bitbucket-cloud/docs/control-access-to-your-private-content/) premium tier feature.
+* Lets you use Snyk with the [allowlisting IP addresses](https://support.atlassian.com/bitbucket-cloud/docs/control-access-to-your-private-content/) premium tier feature in Bitbucket.
* Helps handle rate-limiting issues for companies who spread their repos across multiple workspaces in Bitbucket Cloud.
-* Supports the first-party interface in Bitbucket Cloud (Snyk's Security tab) out-of-the-box, meaning you need not install and maintain the first-party extension app to consume Snyk's security insights from Bitbucket Cloud.
+* Supports the first-party interface in Bitbucket Cloud (the Security tab in Snyk) out-of-the-box, meaning you need not install and maintain the first-party extension app to consume Snyk security insights from Bitbucket Cloud.
#### Limitations of the new app integration
@@ -67,6 +67,6 @@ See [Migrate to the Snyk Bitbucket Cloud App](organization-level-integrations/bi
#### Are there any plans for end-of-life for the Personal Access Token (PAT) integration?
-To improve security, the use of app passwords in Bitbucket Cloud is transitioning to API tokens. Existing integrations that use app passwords will continue to function temporarily until 9 June, 2026:
+To improve security, the use of app passwords in Bitbucket Cloud is transitioning to API tokens. Existing integrations that use app passwords continue to function temporarily until 9 June 2026.
To ensure continued support and functionality, update your Bitbucket Cloud integration in Snyk to use an API token.
diff --git a/developer-tools/scm-integrations/application-context-for-scm-integrations/README.md b/developer-tools/scm-integrations/application-context-for-scm-integrations/README.md
index 66b7cee69f96..ecf9f6e84655 100644
--- a/developer-tools/scm-integrations/application-context-for-scm-integrations/README.md
+++ b/developer-tools/scm-integrations/application-context-for-scm-integrations/README.md
@@ -4,7 +4,7 @@
The application context for SCM integrations provides a comprehensive and interconnected overview of application assets. This context is crucial for assessing security risks and their potential implications, as it outlines the entire structure and components of the applications involved.
-Use Application Context to integrate with Internal Developer Portals (IDPs) and service catalogs such as ServiceNow CMDB, Atlassian Compass, and others. These platforms allow Snyk to automate the collection of essential context, including asset type, ownership, and lifecycle.
+Use Application Context to integrate with Internal Developer Portals (IDPs) and service catalogs such as ServiceNow CMDB, Atlassian Compass, and others. These platforms let Snyk automate the collection of essential context, including asset type, ownership, and lifecycle.
The application context provides broader access to resources and services in an application. You can use it to:
@@ -12,7 +12,7 @@ The application context provides broader access to resources and services in an
* Gather relevant information to effectively assess and manage application security vulnerabilities and identify potential risks.
* Create a streamlined data flow by working cohesively with assets identified through Snyk Essentials SCM integrations
-By leveraging Application context, you can achieve a deeper understanding of your application's security posture. After the integration is set, use the application context that can be leveraged across Snyk to classify repositories, set Asset policies, or filter reports.
+By using Application context, you can achieve a deeper understanding of your application's security posture. After the integration is set, use the application context across Snyk to classify repositories, set Asset policies, or filter reports.
These are the available integrations that you can set up for the application context:
@@ -24,7 +24,7 @@ These are the available integrations that you can set up for the application con
* [Datadog Service Catalog](./#datadog-service-catalog)
{% hint style="info" %}
-The Application Context integrations on this page work in conjunction with assets found through Snyk Essentials SCM integrations. If there is no Snyk Essentials SCM integration configured at the Group level on the Integrations page, then data will not populate from these integrations.
+The Application Context integrations on this page work in conjunction with assets found through Snyk Essentials SCM integrations. If there is no Snyk Essentials SCM integration configured at the Group level on the Integrations page, then data does not populate from these integrations.
{% endhint %}
## Backstage file for SCM integrations
@@ -32,10 +32,10 @@ The Application Context integrations on this page work in conjunction with asset
{% hint style="info" %}
**Release status**
-The ackstage file integration is in Early Access and available with Snyk Enterprise plans.
+The Backstage file integration is in Early Access and available with Snyk Enterprise plans.
{% endhint %}
-Backstage is a service catalog that allows users to add metadata or annotations to their repositories, helping to organize and categorize the available resources for easier navigation and understanding. You can leverage your SCM integration to pull metadata associated with backstage catalog files into Snyk Essentials.
+Backstage is a service catalog that lets users add metadata or annotations to their repositories, helping to organize and categorize the available resources for easier navigation and understanding. You can use your SCM integration to pull metadata associated with backstage catalog files into Snyk Essentials.
You can use the backstage catalog file for GitHub, GitLab, Azure DevOps, BitBucket Cloud, and BitBucket on-prem SCM integrations.
@@ -88,7 +88,7 @@ The ServiceNow CMDB integration is in Early Access and available with Snyk Enter
5. Add the **CMDB field to map Repo URL** - Add the URL of the repository.
{% hint style="info" %}
-* The data gathered by Snyk from ServiceNow CMDB will be correlated with the Repository Assets.
+* Snyk correlates the data gathered from ServiceNow CMDB with the Repository Assets.
* The ServiceNow CMDB integration uses basic authentication and suggests enabling the "Web service access only" option for Service Accounts.
{% endhint %}
@@ -106,7 +106,7 @@ The ServiceNow CMDB integration is in Early Access and available with Snyk Enter
* Category: application\_type
* Owner: business\_unit
* Click **Done**.
-* When the connection is established, the status of the ServiceNow CMDB integration is changed to **Connected**.
+* When the connection is established, the status of the ServiceNow CMDB integration changes to **Connected**.
{% hint style="warning" %}
When you set up the catalog attributes, you can customize the name of the attribute but must ensure that the same name is used in the catalog and in the Integration setup.
@@ -138,7 +138,7 @@ The Atlassian Compass integration is in Early Access and available with Snyk Ent
4. Add your Atlassian Compass instance **Token**. Navigate to the [Manage API tokens for your Atlassian account](https://support.atlassian.com/atlassian-account/docs/manage-api-tokens-for-your-atlassian-account/) page for more details about creating an Atlassian API token.
{% hint style="info" %}
-The gathered data from Atlassian Compass will be correlated with the Repository Assets.
+Snyk correlates the gathered data from Atlassian Compass with the Repository Assets.
This feature is available only for the integration with Atlassian Compass.
{% endhint %}
@@ -159,7 +159,7 @@ This feature is available only for the integration with Atlassian Compass.
* **Owner** - the `ownerId` (finding owner name from ownerId).
* **Application** - the `typeId` (all component types, Application, Service, Library, and so on receive an ID).
9. Click **Done**.
-10. When the connection is established, the status of the Atlassian Compass integration is changed to **Connected**, and Snyk Essentials will start enriching repository assets with the data found in Atlassian Compass.
+10. When the connection is established, the status of the Atlassian Compass integration changes to **Connected**, and Snyk Essentials starts enriching repository assets with the data found in Atlassian Compass.
{% hint style="warning" %}
When you set up the catalog attributes, you must use the specific service-level attributes, for example `attribute.name.`
@@ -199,7 +199,7 @@ This integration is focused on [Harness’s](https://developer.harness.io/docs/i
* Owner - If you select this metadata, it is mandatory to add the **Owner key**.
* Application - If you select this metadata, it is mandatory to add the **Application key**.
8. Click **Done**.
-9. When the connection is established, the status of the Harness integration is changed to **Connected**, and Snyk Essentials will start enriching repository assets with the data found in Harness.
+9. When the connection is established, the status of the Harness integration changes to **Connected**, and Snyk Essentials starts enriching repository assets with the data found in Harness.
{% hint style="warning" %}
When you set up the catalog attributes, you can customize the name of the attribute but must ensure that the same name is used in the catalog and in the Integration setup.
@@ -234,7 +234,7 @@ The OpsLevel integration is in Early Access and available with Snyk Enterprise p
* Owner - Identified with `owner.name` in OpsLevel.
* Application - Identified with `product` in OpsLevel.
8. Click **Done**.
-9. When the connection is established, the status of the OpsLevel integration is changed to **Connected**, and Snyk Essentials will start enriching repository assets with the data found in OpsLevel.
+9. When the connection is established, the status of the OpsLevel integration changes to **Connected**, and Snyk Essentials starts enriching repository assets with the data found in OpsLevel.
{% hint style="warning" %}
When you set up the catalog attributes, you must use the specific service-level attributes, for example `attribute.name.`
@@ -271,7 +271,7 @@ The Datadog Service Catalog integration is in Early Access and available with Sn
* Owner - If you select this metadata, it is mandatory to add the **Owner key**.
* Application - If you select this metadata, it is mandatory to add the **Application key**.
9. Click **Done**.
-10. When the connection is established, the status of the Datadog Service Catalog integration is changed to **Connected**, and Snyk Essentials will start enriching repository assets collected by a Snyk Essentials SCM Integration with the data found in Datadog Service Catalog.
+10. When the connection is established, the status of the Datadog Service Catalog integration changes to **Connected**, and Snyk Essentials starts enriching repository assets collected by a Snyk Essentials SCM Integration with the data found in Datadog Service Catalog.
{% hint style="warning" %}
When you set up the catalog attributes, you can customize the name of the attribute but must ensure that the same name is used in the catalog and in the Integration setup.
diff --git a/developer-tools/scm-integrations/application-context-for-scm-integrations/backstage-file-in-asset-inventory-use-case.md b/developer-tools/scm-integrations/application-context-for-scm-integrations/backstage-file-in-asset-inventory-use-case.md
index c93c4ec60749..782466dcedb7 100644
--- a/developer-tools/scm-integrations/application-context-for-scm-integrations/backstage-file-in-asset-inventory-use-case.md
+++ b/developer-tools/scm-integrations/application-context-for-scm-integrations/backstage-file-in-asset-inventory-use-case.md
@@ -13,7 +13,7 @@ Components have several attributes and most of them are optional:
* `Metadata.name` (mandatory) - represents the name of the component.
* `Metadata.title` (optional) - represents the name of the component.
-The backstage data is dynamic and may change over time:
+The backstage data is dynamic and can change over time:
* If new commits or updates are made to the `catalog-info.yaml` file, then Snyk Essentials updates the asset attribute for that specific repository asset.
* If the`catalog-info.yaml` file is removed from the repository, then Snyk Essentials deletes the asset attribute from that specific repository assets.
diff --git a/developer-tools/scm-integrations/deployment-recommendations.md b/developer-tools/scm-integrations/deployment-recommendations.md
index fe3f679fab62..5f475a29f396 100644
--- a/developer-tools/scm-integrations/deployment-recommendations.md
+++ b/developer-tools/scm-integrations/deployment-recommendations.md
@@ -1,6 +1,6 @@
# Deployment recommendations
-If you try to implement all the SCM integration features at the same time, you risk causing friction in your software development life cycle ([SDLC](https://snyk.io/learn/secure-sdlc/)), which in turn leads to a poor developer experience.
+If you try to implement all the SCM integration features at the same time, you risk causing friction in your software development lifecycle ([SDLC](https://snyk.io/learn/secure-sdlc/)), which in turn leads to a poor developer experience.
To ensure a smooth rollout of Snyk across your organization, Snyk provides a suggested deployment timeline consisting of deployment stages, configuration steps, and the desired outcome for each stage.
@@ -8,7 +8,7 @@ To ensure a smooth rollout of Snyk across your organization, Snyk provides a sug
| ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|
Stage 1: Set up an Organization-level SCM integration in your first Snyk Organization.
Set up a Group-level SCM integration in Snyk Essentials.
Snyk will scan your imported repositories to detect all supported files and create them as Projects where you can view the vulnerabilities detected.
Disabling these features removes potential blockers for your initial setup and use of Snyk. This way, you have scheduled scans and high visibility of reporting without blocking deployments.
|
-|
Stage 3: Build a fix plan using Snyk prioritization reporting capabilities.
| Learn more about [Snyk Priority Score](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/prioritize-issues-for-fixing/priority-score) and [Snyk Risk Score](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/prioritize-issues-for-fixing/risk-score) to understand how you can leverage these features to help prioritize which issues to fix. | Alignment between Developers and Security on what should be fixed and when to streamline the fix process. |
+|
Stage 3: Build a fix plan using Snyk prioritization reporting capabilities.
| Learn more about [Snyk Priority Score](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/prioritize-issues-for-fixing/priority-score) and [Snyk Risk Score](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/prioritize-issues-for-fixing/risk-score) to understand how you can use these features to help prioritize which issues to fix. | Alignment between Developers and Security on what should be fixed and when to streamline the fix process. |
|
Stage 4: Configure Snyk PR Checks and auto-fix PRs to alert developers to issues in real-time, with available fixes.
| Enable [Snyk PR status checks](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/pull-requests) so developers know whether their PR contains high-severity issues with available fixes. | Make it easy for your developers to see new issues before they are merged into the repository, decreasing the number of new vulnerabilities added and enabling them to make decisions on blocking a merge. |
|
Stage 5: Prevent developers from introducing any new vulnerabilities.
| Enable branch protection in your SCM tool so that PRs with failing Snyk PR status checks cannot be merged. | This change will prevent PRs from being merged into your repository if Snyk detects new vulnerabilities. Over time, you can adjust the sensitivity of the check to include all high or critical severity issues, regardless of whether a fix is available. |
|
Stage 6: Enable Snyk automated features to fix issues and keep dependencies up-to-date to reduce technical security debt.
| Snyk will automatically raise PRs to fix issues with the highest severity. Keeping your dependencies up to date helps to reduce future design headaches and hot fixes, which can be time consuming to research and address. |
@@ -27,11 +27,11 @@ For details on these permissions, see [User permissions and access scope require
### Change notification settings
-By default, Snyk emails every Org user when a new issue or fix in a Project’s dependencies is found, and provides each user with a weekly update of the security status across the Organization. If you plan to import many Projects to an Organization, to avoid sending multiple email notifications sent to users, consider disabling all the notifications for that Organization.
+By default, Snyk emails every Org user when it finds a new issue or fix in a Project’s dependencies, and provides each user with a weekly update of the security status across the Organization. If you plan to import many Projects to an Organization, to avoid sending multiple email notifications to users, consider disabling all the notifications for that Organization.
-To customize the emails your Org users receive, go to **Settings** > **Notifications** > **Notification Settings**. The changes you make here will affect all of your Organization’s members, although Org users can override these default settings in their user-level account settings.
+To customize the emails your Org users receive, navigate to **Settings** > **Notifications** > **Notification Settings**. The changes you make here affect all of your Organization’s members, although Org users can override these default settings in their user-level account settings.
-To disable notifications for all the users in an Org ahead of your import, deselect the appropriate notification boxes. See [Manage notifications](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-hierarchy/manage-notifications) for more details.
+To disable notifications for all the users in an Org before your import, deselect the appropriate notification boxes. See [Manage notifications](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-hierarchy/manage-notifications) for more details.
## Stage 2: Import Projects
@@ -44,7 +44,7 @@ Navigate to the **Projects** page in the Snyk UI, select **Add projects**, selec
After a Project is imported, it is continuously checked for vulnerabilities.
{% hint style="info" %}
-To confirm that a Project was imported, go to the **Add project** import page for the integration. Imported Projects are indicated by a checkmark next to the repository name.
+To confirm that a Project was imported, navigate to the **Add project** import page for the integration. A checkmark next to the repository name indicates imported Projects.
{% endhint %}
For details, see [Import a Project](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/getting-started-guides/getting-started#import-a-project-to-scan-and-identify-issues).
@@ -89,7 +89,7 @@ When you first roll out your SCM integration, Snyk recommends that you start wit
## Stage 4: Enable Blocking PRs
-After you have embedded Snyk into your software development life cycle (SDLC), and have built good developer awareness, you can start to apply stricter policies to improve your overall security posture, for example:
+After you have embedded Snyk into your software development lifecycle (SDLC), and have built good developer awareness, you can start to apply stricter policies to improve your overall security posture, for example:
* Low-priority Projects: you can fail the PR only for new high-severity issues that are fixable.
* Medium-priority Projects: fail the PR only for high-severity issues.
diff --git a/developer-tools/scm-integrations/group-level-integrations/README.md b/developer-tools/scm-integrations/group-level-integrations/README.md
index 4b6ec19a0f59..35d754c34ebd 100644
--- a/developer-tools/scm-integrations/group-level-integrations/README.md
+++ b/developer-tools/scm-integrations/group-level-integrations/README.md
@@ -1,6 +1,6 @@
# Group-level integrations
-Group-level SCM integrations provide broader visibility into all the application assets for a given customer and pull in the additional application context and, or metadata, for example, information on developers, commits, and so on.
+Group-level SCM integrations provide broader visibility into all the application assets for a given customer and pull in the additional application context and metadata, for example, information on developers, commits, and so on.
At the Group level, you can set up and customize your Snyk Essentials integrations from the **Integrations** page, where the following SCMs are available:
@@ -18,7 +18,7 @@ The Integrations page at the Group-level shows all active integrations, includin
{% hint style="warning" %}
The SCM integrations use an incremental approach to retrieve repositories. This means that when a sync is initiated, it checks the last update time of the repository and only transfers the repositories that have been modified since then.
-If there have been changes to the scope of the user or PAT used for the integration, any repositories that are newly within scope will only be identified after either a change to trigger the incremental collection or a change to the integration configuration itself.
+If there have been changes to the scope of the user or PAT used for the integration, Snyk identifies any repositories that are newly in scope only after either a change to trigger the incremental collection or a change to the integration configuration itself.
{% endhint %}
The following supported Snyk data are automatically synced:
@@ -28,12 +28,12 @@ The following supported Snyk data are automatically synced:
* Snyk IaC
* Snyk Container
-Each connected integration enables you to:
+Each connected integration lets you:
* Pause data syncing
* Modify integration profiles and configurations
* Delete the integration
-* Check when the integration was last synced and when the next sync is scheduled.
+* Check when the integration was last synced and when the next sync is scheduled
See the [Integration syncing time](../../integrations/integrate-with-snyk.md#integrations-syncing-time) for more details about the time required to sync for each action.
@@ -43,7 +43,7 @@ To configure a Group-level integration, you must be a Group Admin or have a cust
### Wildcard SCM integration
-The wildcard integration allows you to use a special character to detect and integrate multiple SCM organizations simultaneously.
+The wildcard integration lets you use a special character to detect and integrate multiple SCM organizations simultaneously.
{% hint style="info" %}
The wildcard integration applies to the GitHub integration and offers support when you set it up using [Snyk Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/using-snyk-essentials-with-snyk-broker).
@@ -53,12 +53,12 @@ You can use the wildcards while setting up your integration using the **Integrat
* Navigate to **Integrations**.
* Select the **SCM** tag and search for GitHub or Azure DevOps.
-* Click the **Add** button.
+* Click **Add**.
* In the **Organizations** field, add the Organization details by using the `*` symbol. For example, using `*snyk` integrates all SCM Organizations that have Snyk in their name.
-* All the Organizations that match with the wildcard, `*` symbol will be added.
+* Snyk adds all the Organizations that match the wildcard `*` symbol.
{% hint style="info" %}
-The wildcard, `*` symbol is considered a living command and will be applied every time you are rescanning your repositories.
+The wildcard `*` symbol is considered a living command and applies every time you rescan your repositories.
{% endhint %}
### Snyk Essentials integrations ecosystem
diff --git a/developer-tools/scm-integrations/group-level-integrations/azure-devops-for-snyk-essentials.md b/developer-tools/scm-integrations/group-level-integrations/azure-devops-for-snyk-essentials.md
index e7fda2d8232e..1310d01c9f17 100644
--- a/developer-tools/scm-integrations/group-level-integrations/azure-devops-for-snyk-essentials.md
+++ b/developer-tools/scm-integrations/group-level-integrations/azure-devops-for-snyk-essentials.md
@@ -29,7 +29,7 @@ The following PAT token permissions requirements are for Snyk Essentials integra
## Generate a Personal access token from your Azure DevOps settings
{% hint style="warning" %}
-The user account that owns the PAT needs `Basic` access level on the Azure organisation.
+The user account that owns the PAT needs `Basic` access level on the Azure organization.
{% endhint %}
1. Open Azure DevOps and click the **Settings** menu for your profile.
diff --git a/developer-tools/scm-integrations/group-level-integrations/github-for-snyk-essentials.md b/developer-tools/scm-integrations/group-level-integrations/github-for-snyk-essentials.md
index 781bc49191ee..ae6f7db25de6 100644
--- a/developer-tools/scm-integrations/group-level-integrations/github-for-snyk-essentials.md
+++ b/developer-tools/scm-integrations/group-level-integrations/github-for-snyk-essentials.md
@@ -43,17 +43,17 @@ If you want to pull data from both organization and personal repositories, then
## Generate a Personal access token from your GitHub settings
-1. Open GitHub and click the Settings menu for your profile.
-2. Select Developer settings from the left sidebar.
-3. Select Personal access tokens and then Tokens (classic).
-4. Click Generate new token and, from the dropdown, select Generate new token (classic).
-5. Add a description for your token in the Note field.
+1. Open GitHub and click the **Settings** menu for your profile.
+2. Select **Developer settings**.
+3. Select **Personal access tokens** and then **Tokens (classic)**.
+4. Click **Generate new token** and, from the dropdown, select **Generate new token (classic)**.
+5. Add a description for your token in the **Note** field.
6. Select the required permissions:
* `repo`
* `read:org`
* `read:user`
* `user:email`.
-7. Click Generate token.
+7. Click **Generate token**.
8. Copy and store the displayed key.
{% hint style="info" %}
@@ -66,4 +66,4 @@ You can use the[ GitHub REST API](https://docs.github.com/en/rest?apiVersion=202
You can use as the host Address the IP/URL of the GitHub server. The default URL is [`https://api.github.com`](https://api.github.com).
-The user associated with the token needs to have write permissions on relevant repositories to collect a breakdown of scan issues.
+The user associated with the token must have write permissions on relevant repositories to collect a breakdown of scan issues.
diff --git a/developer-tools/scm-integrations/group-level-integrations/gitlab-for-snyk-essentials.md b/developer-tools/scm-integrations/group-level-integrations/gitlab-for-snyk-essentials.md
index 2ffc10cdcee5..7b2323719750 100644
--- a/developer-tools/scm-integrations/group-level-integrations/gitlab-for-snyk-essentials.md
+++ b/developer-tools/scm-integrations/group-level-integrations/gitlab-for-snyk-essentials.md
@@ -20,20 +20,20 @@ To configure a Group-level integration, you must be a Group Admin or have a cust
3. Broker Token (`mandatory`): Create and add your Broker token if you use Snyk Broker.
* Generate your Broker token by following the instructions from the [Obtain your Broker token for Snyk Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/classic-broker/prepare-snyk-broker-for-deployment/obtain-the-tokens-required-to-set-up-snyk-broker) page.
* Copy and paste the Broker token on the integration setup menu from the Integration Hub.
-4. Pull personal repositories (`optional`): Enable the option If you only want to pull the repositories you own.
+4. Pull personal repositories (`optional`): Enable the option if you only want to pull the repositories you own.
5. Add Backstage Catalog (`optional`): If you want to add your Backstage catalog, follow the instructions from the [Backstage file for SCM Integrations](../application-context-for-scm-integrations/) page.
## Generate a [Personal access token](../organization-level-integrations/gitlab.md#gitlab-access-tokens) from your GitLab settings
1. Navigate to your GitLab profile.
-2. Select Edit Profile.
-3. On the left sidebar, select Access Token.
-4. Select Add New Token.
+2. Select **Edit Profile**.
+3. Select **Access Token**.
+4. Select **Add New Token**.
5. Enter a name and expiry date for the token.
6. Ensure to enable this permission:
* `read_api` - Grants read access to the API, including all groups and projects, the container registry, and the package registry.
* `read_repository` - Grants read-only access to repositories on private projects using Git-over-HTTP or the Repository Files API.
-7. Click the Create personal access token button.
+7. Click **Create personal access token**.
8. Copy and store the displayed key.
## API version
diff --git a/developer-tools/scm-integrations/organization-level-integrations/README.md b/developer-tools/scm-integrations/organization-level-integrations/README.md
index caf2e95ec461..f128e0b0e166 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/README.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/README.md
@@ -1,8 +1,8 @@
# Organization-level integrations
-Snyk provides seamless integrations with various source control management systems such as GitHub, GitLab, Bitbucket, and Azure Repos at the Organizational level. These integrations enable you to automatically scan for vulnerabilities and receive actionable insights to enhance the security of your repositories. By integrating at this level, you can ensure comprehensive protection for all your Projects within the Organization.
+Snyk provides integrations with various source control management systems such as GitHub, GitLab, Bitbucket, and Azure Repos at the Organization level. These integrations let you automatically scan for vulnerabilities and receive actionable insights to enhance the security of your repositories. By integrating at this level, you can protect all your Projects in the Organization.
-Snyk can integrate with the following SCMs at the Organization-level to help you track, monitor, and fix the issues and vulnerabilities in your code:
+Snyk can integrate with the following SCMs at the Organization level to help you track, monitor, and fix the issues and vulnerabilities in your code:
* [GitHub](github.md)
* [GitHub Enterprise](github-enterprise.md)
diff --git a/developer-tools/scm-integrations/organization-level-integrations/azure-repositories-tfs.md b/developer-tools/scm-integrations/organization-level-integrations/azure-repositories-tfs.md
index 5868be1ddad1..0a1a1e0085d8 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/azure-repositories-tfs.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/azure-repositories-tfs.md
@@ -4,7 +4,7 @@
**Feature availability**\
Integration with Azure DevOps Server 2020 and above, also known as TFS, is available only with Enterprise plans. For more information, see [plans and pricing](https://snyk.io/plans/).
-Snyk supports only Git. Snyk does not currently support integration with Team Foundation Version Control (TFVC).
+Snyk supports only Git. Snyk does not support integration with Team Foundation Version Control (TFVC).
{% endhint %}
### Prerequisites for Azure Repositories (TFS) integration
@@ -46,7 +46,7 @@ Generate and copy a unique PAT to use for Snyk. For more information on the PAT
1. Log in to [your Snyk account](https://app.snyk.io) and navigate to **Integrations**.
2. On the **Azure Repos** tile, click the settings icon to open **Organization Settings** > **Integrations** > **Azure Repos** > **Account credentials**.
-3. Pay special attention to the instructions given on the **Account Credentials** page. Depending on your plan, you may need to enter just the Azure DevOps Organization, or you may need to enter the entire URL.
+3. Pay special attention to the instructions given on the **Account Credentials** page. Depending on your plan, you may need to enter only the Azure DevOps Organization, or you may need to enter the entire URL.
* **Set your organization**: Enter the slug for your Organization only.\
For example, enter `your-azure-devops-org`
* **Set your host**: enter the entire url.\
@@ -57,7 +57,7 @@ Generate and copy a unique PAT to use for Snyk. For more information on the PAT
Snyk tests the connection values and the page reloads, displaying the Azure Repos integration information. A message to confirm that the details were updated appears at the top of the screen.
{% hint style="info" %}
-If the connection to Azure fails, a notification will appear under the **Azure Repos** card title.
+If the connection to Azure fails, a notification appears under the **Azure Repos** card title.
{% endhint %}
### Add Projects to Snyk for Azure Repos
diff --git a/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud-app.md b/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud-app.md
index 45c9d6dff4bf..a66d844bea5b 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud-app.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud-app.md
@@ -1,13 +1,13 @@
# Bitbucket Cloud App
-The Bitbucket Cloud App is positioned to be the default Bitbucket Cloud integration
+The Bitbucket Cloud App is the default Bitbucket Cloud integration.
-The Bitbucket Cloud App integration lets you connect your Snyk Organization to a Bitbucket Cloud Workspace and get all Snyk's core SCM integration features:
+The Bitbucket Cloud App integration lets you connect your Snyk Organization to a Bitbucket Cloud Workspace and get all the core SCM integration features in Snyk:
* Continuously perform security scanning across all the integrated repositories
* Detect vulnerabilities in your Open Source components
* Provide automated fixes and upgrades
-* Provides developer teams with first-party visibility for security issues directly in the Bitbucket interface
+* Provide developer teams with first-party visibility for security issues directly in the Bitbucket interface
{% hint style="info" %}
Snyk recommends using the Bitbucket Cloud App integration for smoother integration and to ensure long-term support.
@@ -17,7 +17,7 @@ If you are using the [Bitbucket Cloud API token integration](bitbucket-cloud.md)
### Setting up a Bitbucket Cloud App
-To give Snyk access to your Bitbucket account, you need to install the Snyk App on your Bitbucket Cloud workspace.
+To give Snyk access to your Bitbucket account, you must install the Snyk App on your Bitbucket Cloud workspace.
{% hint style="info" %}
To install the Snyk App on your Bitbucket Cloud workspace, you must have **Admin** permissions for the Workspace in Bitbucket.
@@ -126,7 +126,7 @@ The first-party interface currently supports only the [Snyk Open Source](https:/
You can **associate a first-party interface with a different Snyk account or Organization**.
-During the first-time Bitbucket Cloud App onboarding process, the first-party interface is associated with a specific Snyk Organization. This is the Snyk Organization to which Bitbucket users will import repositories and for which they will view Snyk issues.
+During the first-time Bitbucket Cloud App onboarding process, the first-party interface is associated with a specific Snyk Organization. This is the Snyk Organization to which Bitbucket users import repositories and for which they view Snyk issues.
To change the Snyk Organization after onboarding, go to the workspace settings > **Security for Bitbucket Cloud** > **Integration Settings** and click **Connect via a different Snyk user/organization**.
@@ -154,5 +154,5 @@ To disable this integration, in **Organization settings** > **Integrations** > *
2. Scroll to the **Disconnect** section and click **Remove** to remove the integration.
{% hint style="info" %}
-Disconnecting the integration from the Snyk side does not uninstall the app from your workspace in Bitbucket Cloud. To uninstall the Bitbucket app, navigate to your workspace settings in Bitbucket.org --> Installed Apps and remove the Snyk Security for Bitbucket Cloud app.
+Disconnecting the integration from the Snyk side does not uninstall the app from your workspace in Bitbucket Cloud. To uninstall the Bitbucket app, navigate to your workspace settings in Bitbucket.org > **Installed Apps** and remove the Snyk Security for Bitbucket Cloud app.
{% endhint %}
diff --git a/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud.md b/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud.md
index b2e18f02fc1e..b8592360eb18 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/bitbucket-cloud.md
@@ -13,7 +13,7 @@ The Bitbucket Cloud API token integration lets you:
### How to set up the Bitbucket Cloud Integration
{% hint style="info" %}
-Admin permissions are required; however, Snyk's access is ultimately limited by the [permissions assigned to the API Token](https://support.atlassian.com/bitbucket-cloud/docs/create-an-api-token/).\
+Admin permissions are required. However, Snyk access is ultimately limited by the [permissions assigned to the API Token](https://support.atlassian.com/bitbucket-cloud/docs/create-an-api-token/).\
\
To improve security, the use of app passwords in Bitbucket Cloud is transitioning to API tokens. Existing integrations that use app passwords will continue to function temporarily until 9 June 2026.\
To ensure continued support and functionality, update your Bitbucket Cloud integration in Snyk to use an API token.
@@ -38,11 +38,11 @@ After you connect Snyk to your Bitbucket Cloud account, you can select repositor
After you add the selected repositories, Snyk scans them for dependency files in the entire directory tree, that is, `package.json`, `pom.xml`, and so on, and imports them to Snyk as Projects.
-The imported projects appear on your **Projects** page and are continuously checked for vulnerabilities.
+The imported Projects appear on your **Projects** page and are continuously checked for vulnerabilities.
### Bitbucket integration features
-After the integration is in place, you will be able to use capabilities such as:
+After the integration is in place, you can use capabilities such as:
* [Project-level security reports](bitbucket-cloud.md#project-level-security-reports)
* [Project monitoring and automatic fix pull requests](bitbucket-cloud.md#project-monitoring-and-automatic-fix-pull-requests)
diff --git a/developer-tools/scm-integrations/organization-level-integrations/bitbucket-data-center-server.md b/developer-tools/scm-integrations/organization-level-integrations/bitbucket-data-center-server.md
index f2251c356442..562593e5df87 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/bitbucket-data-center-server.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/bitbucket-data-center-server.md
@@ -1,6 +1,6 @@
# Bitbucket Data Center/Server
-The Bitbucket Data Center/Server integration allows you to continuously perform security scanning across all the integrated repositories, detect vulnerabilities in your open-source components, and use automated fixing. This integration supports Bitbucket Data Center/Server versions 4.0 and above.
+The Bitbucket Data Center/Server integration lets you continuously perform security scanning across all the integrated repositories, detect vulnerabilities in your open-source components, and use automated fixing. This integration supports Bitbucket Data Center/Server versions 4.0 and above.
For a quick reference, see the [Snyk and Bitbucket best practices cheat sheet](https://snyk.io/blog/snyk-bitbucket-best-practices-cheat-sheet/) on the Snyk blog.
@@ -8,7 +8,7 @@ For a quick reference, see the [Snyk and Bitbucket best practices cheat sheet](h
1. To give Snyk access to your Bitbucket DC/Server account, set up a dedicated service account in Bitbucket DC/Server with admin permissions.\
Visit [Bitbucket Server documentation ](https://confluence.atlassian.com/bitbucketserver/users-and-groups-776640439.html#Usersandgroups-Creatingauser)to learn more about creating users.\
- Ensure the newly-created user has **Admin** permissions to all the repositories you need to monitor with Snyk.
+ Ensure the newly created user has **Admin** permissions to all the repositories you need to monitor with Snyk.
2. In Snyk, navigate to the **Integrations** page and click on the **Bitbucket Server** card.
3. Enter your Bitbucket DC/Server URL and the username and password for the service account you created. Alternatively, you can create a [personal access token](https://confluence.atlassian.com/bitbucketserver075/personal-access-tokens-1018784848.html) and use it instead of a password.
1. If your Bitbucket DC/Server instance has Basic Auth disabled, you must use a personal access token.
@@ -24,7 +24,7 @@ To select the repositories for Snyk to monitor:
1. Click **Add your Bitbucket Server repositories to Snyk** to start importing repositories to Snyk.
2. When prompted, select the repositories to import to Snyk and click **Add selected repositories**.
-After they are added, Snyk scans the selected repositories for dependency files in the entire directory tree, (that is, `package.json`, `pom.xml`, and so on) and imports them to Snyk as projects.\
+After they are added, Snyk scans the selected repositories for dependency files in the entire directory tree, (that is, `package.json`, `pom.xml`, and so on) and imports them to Snyk as Projects.\
\
The imported Projects appear on your Snyk **Projects** page and are continuously checked for vulnerabilities.
@@ -106,15 +106,15 @@ Snyk performs all the Bitbucket DC/Server operations on behalf of the integrated
For Snyk to perform the required operations on monitored repositories, such as reading manifest files on a frequent basis and opening fix or upgrade PRs, the integrated Bitbucket DC/Server service account needs **Admin** permissions on the imported repositories.
-**Admin** permissions are also needed to set secure webhooks. Snyk relies on webhooks to perform a variety of tasks, from PR checks, to commit tests upon merge events, and upcoming auto imports. To ensure the events come from your system and your system only, with no tampering or spoofing, we secure the webhooks using the recommended method shared by the systems we are connecting to. For Bitbucket Server, please see [this link](https://confluence.atlassian.com/bitbucketserver/manage-webhooks-938025878.html#Managewebhooks-webhooksecretsSecuringyourwebhook).\
-To do this, a secret token is generated for each secure webhook we create. Snyk setting the webhooks resolves scalability constraints, eliminates token leakage, and reduces the integration workload for you.
+**Admin** permissions are also needed to set secure webhooks. Snyk relies on webhooks to perform a variety of tasks, from PR checks, to commit tests upon merge events, and upcoming auto imports. To ensure the events come from your system and your system only, with no tampering or spoofing, Snyk secures the webhooks using the recommended method shared by the systems Snyk connects to. For Bitbucket Server, see the [Manage webhooks](https://confluence.atlassian.com/bitbucketserver/manage-webhooks-938025878.html#Managewebhooks-webhooksecretsSecuringyourwebhook) documentation.\
+To do this, Snyk generates a secret token for each secure webhook it creates. Snyk setting the webhooks resolves scalability constraints, eliminates token leakage, and reduces the integration workload for you.
For detailed information on the permission scopes required, see [Bitbucket permission requirements](../user-permissions-and-access-scopes.md#bitbucket-cloud-and-bitbucket-data-center-server-scopes).
### How to disconnect the Bitbucket Data Center/Server integration
{% hint style="warning" %}
-When you disconnect Snyk from your Bitbucket repository projects, your credentials are removed from Snyk, and any integration-specific projects that Snyk is monitoring are deactivated in Snyk.\
+When you disconnect Snyk from your Bitbucket repository Projects, your credentials are removed from Snyk, and any integration-specific Projects that Snyk is monitoring are deactivated in Snyk.\
To re-enable this integration later, you must re-enter your credentials and activate your Projects.
{% endhint %}
diff --git a/developer-tools/scm-integrations/organization-level-integrations/github-cloud-app.md b/developer-tools/scm-integrations/organization-level-integrations/github-cloud-app.md
index a3016248eae6..b46b2972effb 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/github-cloud-app.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/github-cloud-app.md
@@ -29,7 +29,7 @@ The GitHub Cloud App improves on many features as compared to the current GitHub
* RBAC (Role-Based Access Control) Compliance: With the GitHub Cloud App, the access control mechanism is decoupled from individual user accounts. Instead, it is associated with the app entity itself. This separation allows for better management and enforcement of RBAC policies, as access control is handled at the application level rather than being tied to individual user accounts.
* Granular access control: The GitHub Cloud App allows for fine-grained control over access permissions at the repository level.
-* Increased API rate limit: The GitHub Cloud App provides higher rate limits, allowing Snyk to make a larger number of API requests. This increased limit will assist in handling large-scale use cases, such as monorepos with a large number of Projects, GitHub organizations with a large number of repositories, and more.
+* Increased API rate limit: The GitHub Cloud App provides higher rate limits, allowing Snyk to make a larger number of API requests. This increased limit helps handle large-scale use cases, such as monorepos with a large number of Projects, GitHub organizations with a large number of repositories, and more.
* Enabler for an enhanced developer experience:
* Pull request checks: The Checks tab experience in GitHub is exclusively accessible through the GitHub Cloud App, enabling an SCM native experience as part of potential future PR check workflow improvements.
* Fix and upgrade pull requests: Pull requests initiated by Snyk are performed directly by the GitHub App rather than a service account.
@@ -70,7 +70,7 @@ Specify whether you wish to install the app in all of the repositories belonging
Install and authorize settings for the GitHub organization you are installing the GitHub Cloud App into
{% hint style="warning" %}
-The GitHub Cloud App will lose access to Snyk if it is uninstalled from the GitHub organization or if the repositories to which the app instance has access are edited.
+The GitHub Cloud App loses access to Snyk if it is uninstalled from the GitHub organization or if the repositories to which the app instance has access are edited.
{% endhint %}
## How to migrate to the GitHub Cloud App
diff --git a/developer-tools/scm-integrations/organization-level-integrations/github-enterprise.md b/developer-tools/scm-integrations/organization-level-integrations/github-enterprise.md
index 64cf9a3b5c93..bce9af49805a 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/github-enterprise.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/github-enterprise.md
@@ -50,7 +50,7 @@ See [GitHub and GitHub Enterprise permissions requirements](../user-permissions-
1. In Snyk, navigate to the **Integrations** page and click the **GitHub Enterprise** card.
2. Enter your GitHub Enterprise URL and the personal access token (PAT) for the service account you created, and **Save** your changes. After Snyk has successfully connected to the GitHub instance, the list of available repositories displays for your selection.
3. If your GitHub Enterprise organization enforces SAML/SSO, select **Configure SSO** next to the PAT in GitHub after the PAT has been created.\
- Occasionally, SSO is enforced in your GitHub Enterprise organizations after a PAT and Integration are configured. If this happens, any Projects that have already been imported show in Snyk, but retests, PR Checks, and so on, will not be performed. To fix this, check the **Configure SSO** settings to ensure the GitHub Enterprise organization is **Authorized**.\
+ Occasionally, SSO is enforced in your GitHub Enterprise organizations after a PAT and Integration are configured. If this happens, any Projects that have already been imported show in Snyk, but Snyk does not perform retests, PR Checks, and so on. To fix this, check the **Configure SSO** settings to ensure the GitHub Enterprise organization is **Authorized**.\
If the organization is showing as **Authorized**, but the issue still persists, try de-authorizing the organization and then re-authorizing.
{% hint style="info" %}
@@ -60,7 +60,7 @@ Ensure that there are no trailing characters such as `/` following the url. An i
{% endhint %}
{% hint style="warning" %}
-If the PAT token changes or expires in GitHub, the integration with Snyk will not function. To resolve this, update the token in the Snyk **GitHub Enterprise Integration settings**.
+If the PAT token changes or expires in GitHub, the integration with Snyk does not function. To resolve this, update the token in the Snyk **GitHub Enterprise Integration settings**.
{% endhint %}
#### How to import GitHub repositories
@@ -123,7 +123,7 @@ The Auto-assign PRs feature is supported only for private repositories.
Snyk can automatically assign the pull requests it creates to ensure that they are handled by the right team members.
-Auto-assign for PRs can be enabled for the GitHub and GitHub Enterprise integration and all Projects imported via GitHub, or on a per-Project basis.
+Auto-assign for PRs can be enabled for the GitHub and GitHub Enterprise integration and all Projects imported through GitHub, or on a per-Project basis.
Users can either be manually specified, and all will be assigned, or automatically selected based on the last commit user account.
@@ -164,9 +164,9 @@ Disconnecting the Snyk GitHub Enterprise integration halts all scans for importe
Confirm disconnecting from GitHub Enterprise
-After GitHub Enterprise is disconnected, imported Snyk Projects will be set to inactive, and you will no longer get alerts, pull requests, or Snyk tests on pull requests.
+After GitHub Enterprise is disconnected, Snyk sets imported Projects to inactive, and you no longer get alerts, pull requests, or Snyk tests on pull requests.
-You can re-connect anytime; however, re-initiating GitHub Enterprise projects for monitoring requires setting up the integration again.
+You can re-connect anytime. However, re-initiating GitHub Enterprise Projects for monitoring requires setting up the integration again.
4. Broker Token (`mandatory`): Create and add your Broker token if you use Snyk Broker.
* Generate your Broker token by following the instructions from the [Obtain your Broker token for Snyk Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/classic-broker/prepare-snyk-broker-for-deployment/obtain-the-tokens-required-to-set-up-snyk-broker) page.
diff --git a/developer-tools/scm-integrations/organization-level-integrations/github-read-only-projects.md b/developer-tools/scm-integrations/organization-level-integrations/github-read-only-projects.md
index 178e4f3fc539..371ee8b9dc77 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/github-read-only-projects.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/github-read-only-projects.md
@@ -2,11 +2,11 @@
### How GitHub Read-only Projects work
-Snyk offers GitHub Read-only Projects, providing the ability to monitor a public GitHub repository that is not owned by your Organization.
+Snyk offers GitHub Read-only Projects, which let you monitor a public GitHub repository that your Organization does not own.
Adding a read-only Project lets you track the vulnerabilities in a Project you are considering using as a dependency, a Project you are already using as a stand-alone independent tool within your business, or any other public repository where you do not need to actively prevent or fix issues using Snyk.
-The repository is tested daily using your Organization's GitHub credentials. These automated tests are not counted as part of the test limits of your Snyk plan.
+Snyk tests the repository daily using your Organization's GitHub credentials. These automated tests do not count as part of the test limits of your Snyk plan.
Unlike Projects imported through the Snyk GitHub integration, Projects that are imported or monitored with the read-only status cannot do the following:
@@ -21,8 +21,8 @@ Unlike Projects imported through the Snyk GitHub integration, Projects that are
Import a read-only Project using the **Add project** > **Monitor public GitHub repos** menu in the **Dashboard** and **Projects** tabs, or by going to [Monitor public GitHub repositories](https://app.snyk.io/add/github-readonly).
1. Enter a public repository to monitor, following the format `owner/repository.`
-2. When you have entered a valid repository name, click **+ Add repo**.\
- The repository is quickly tested for a supported manifest file.
-3. Enter the public repositories you want to monitor and select **Import N repository/ies**.
+2. After you enter a valid repository name, click **+ Add repo**.\
+ Snyk tests the repository for a supported manifest file.
+3. Enter the public repositories you want to monitor and select **Import N repositories**.
Add repo and Import repository or repositories
diff --git a/developer-tools/scm-integrations/organization-level-integrations/github-server-app.md b/developer-tools/scm-integrations/organization-level-integrations/github-server-app.md
index 54d2ab0cc61f..8b61613d850c 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/github-server-app.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/github-server-app.md
@@ -20,11 +20,11 @@ This feature supports self-hosted instances of GitHub and Snyk [Universal Broker
The Snyk GitHub Server App improves on many features compared to the Snyk GitHub Enterprise integration, including role-based granular access control, increased API rate limits, and the creation of an entry point for expanded and enhanced developer experiences.
* RBAC (Role-Based Access Control) Compliance:
- * With the GitHub Server App, the access control mechanism is decoupled from individual user accounts. Instead, it is associated with the app entity itself. This separation allows for better management and enforcement of RBAC policies, as access control is handled at the application level rather than being tied to individual user accounts.
+ * With the GitHub Server App, the access control mechanism is decoupled from individual user accounts. Instead, it is associated with the app entity itself. This separation allows better management and enforcement of RBAC policies, because access control is handled at the application level rather than being tied to individual user accounts.
* Granular access control:
- * The GitHub Server App allows for fine-grained control over access permissions at the repository level.
+ * The GitHub Server App provides fine-grained control over access permissions at the repository level.
* Increased API rate limit:
- * The GitHub Server App provides higher rate limits, allowing Snyk to make a larger number of API requests. This increased limit will assist in handling large-scale use cases, such as monorepos with a large number of Projects, GitHub organizations with a large number of repositories, and more.
+ * The GitHub Server App provides higher rate limits, letting Snyk make a larger number of API requests. This increased limit helps in handling large-scale use cases, such as monorepos with a large number of Projects, GitHub organizations with a large number of repositories, and more.
* Enabler for an enhanced developer experience:
* Pull request checks: The Checks tab experience in GitHub is exclusively accessible through the GitHub Cloud App, enabling an SCM native experience as part of potential future PR check workflow improvements.
* Fix and upgrade pull requests: Pull requests initiated by Snyk are performed directly by the GitHub App rather than a service account.
@@ -38,11 +38,11 @@ When setting up the GitHub Server App, you can implement only one of the followi
* One GitHub organization connected to multiple Snyk Organizations
{% endhint %}
-In the Snyk UI navigate to the integrations page and select the **GitHub Server App** tile.
+In the Snyk Web UI, navigate to the integrations page and select the **GitHub Server App** tile.
GitHub Server App tile highlighted in the Snyk UI
-Clicking on the tile opens a modal that allows you to enter the URL of your GitHub Server. Entering the URL of your GitHub Server instance will redirect you to your GitHub instance, where you will be able to create the app.
+Clicking the tile opens a modal where you can enter the URL of your GitHub Server. Entering the URL of your GitHub Server instance redirects you to your GitHub instance, where you can create the app.
Integration model prompting you for your GitHub Server's URL
@@ -65,7 +65,7 @@ Specify whether you wish to install the app in all or a select number of the rep
Install and authorize settings for the GitHub organization you are installing the GitHub Cloud App into
{% hint style="danger" %}
-The GitHub Server App will lose access to Snyk if it is uninstalled from the GitHub organization. If this happens, you can create a fresh integration in Snyk to regain access.
+The GitHub Server App loses access to Snyk if it is uninstalled from the GitHub organization. If this happens, you can create a fresh integration in Snyk to regain access.
{% endhint %}
### Migrate from an existing GitHub Enterprise integration
@@ -75,7 +75,7 @@ If you are an Enterprise plan customer, you can migrate Snyk Targets to the GitH
### How to disconnect a non-brokered GitHub Server App integration
{% hint style="warning" %}
-Disconnecting the Snyk GitHub Server App integration halts all scans for imported repositories. PR checks cannot be executed and Projects are deactivated in the Snyk Web UI.
+Disconnecting the Snyk GitHub Server App integration halts all scans for imported repositories. Snyk cannot run PR checks, and Projects are deactivated in the Snyk Web UI.
Note that the GitHub App will remain listed on your GitHub organization until removed manually.
{% endhint %}
@@ -86,20 +86,20 @@ Note that the GitHub App will remain listed on your GitHub organization until re
Confirm disconnecting from GitHub Server App
-After the integration is disconnected, imported Snyk Projects will be set to inactive, and you will no longer get alerts, pull requests, or Snyk tests on pull requests.
+After the integration is disconnected, imported Snyk Projects are set to inactive, and you no longer get alerts, pull requests, or Snyk tests on pull requests.
-You can re-connect anytime; however, re-initiating the Snyk Projects for monitoring requires setting up the integration again.
+You can re-connect anytime. However, re-initiating the Snyk Projects for monitoring requires setting up the integration again.
### How to disconnect a brokered GitHub Server App integration
{% hint style="warning" %}
-Disconnecting the Snyk GitHub Server App integration halts all scans for imported repositories. PR checks cannot be executed and Projects are deactivated in the Snyk Web UI.
+Disconnecting the Snyk GitHub Server App integration halts all scans for imported repositories. Snyk cannot run PR checks, and Projects are deactivated in the Snyk Web UI.
Note that the GitHub App will remain listed on your GitHub organization until the app is removed manually.
{% endhint %}
Run `snyk-broker-config workflows connections disconnect` and select the connection you want to disconnect.
-After the integration is disconnected, imported Snyk Projects will be set to inactive, and you will no longer get alerts, pull requests, or Snyk tests on pull requests.
+After the integration is disconnected, imported Snyk Projects are set to inactive, and you no longer get alerts, pull requests, or Snyk tests on pull requests.
-You can re-connect anytime; however, re-initiating the Snyk Projects for monitoring requires setting up the integration again.
+You can re-connect anytime. However, re-initiating the Snyk Projects for monitoring requires setting up the integration again.
diff --git a/developer-tools/scm-integrations/organization-level-integrations/github.md b/developer-tools/scm-integrations/organization-level-integrations/github.md
index 763b414fbde7..d3deb68b32bc 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/github.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/github.md
@@ -9,13 +9,13 @@
### Known limitations of the GitHub integration
-You cannot use the GitHub integration with a Snyk [Service Account](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts), as the GitHub integration is associated with your user account, not with the Snyk Organization.
+You cannot use the GitHub integration with a Snyk [Service Account](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts), because the GitHub integration is associated with your user account, not with the Snyk Organization.
Use the [GitHub Enterprise integration](github-enterprise.md) to import public and private Projects using the API with a Snyk Service Account.
### GitHub integration features
-The GitHub integration allows you to:
+The GitHub integration lets you:
* Continuously perform security scanning across all the integrated repositories
* Detect vulnerabilities in your open-source components
@@ -33,9 +33,9 @@ To connect your GitHub repositories to Snyk for scanning, you need to set up the
### GitHub integration settings
-To see all settings for your GitHub integration, go to the GitHub Integration settings page, then navigate to Organization **Settings**, and select **GitHub** in the **Integrations** section:
+To see all settings for your GitHub integration, navigate to the GitHub Integration settings page, then navigate to Organization **Settings**, and select **GitHub** in the **Integrations** section:
-You can then scroll down to the section required, and set the options accordingly:
+You can then scroll to the section required, and set the options accordingly:
* [General settings](github.md#general-github-integration-settings)
* Pull requests:
@@ -62,7 +62,7 @@ Select **General** to view general settings:
### GitHub integration features
-After you have connected GitHub to Snyk, you can use:
+After you connect GitHub to Snyk, you can use:
* [Project-level security reports](github.md#project-level-security-reports)
* [Project monitoring and automatic fix pull requests](github.md#project-monitoring-and-automatic-fix-pull-requests)
@@ -85,7 +85,7 @@ This example shows a Project-level security report.
#### Project monitoring and automatic fix pull requests
-Snyk scans your Projects on either a daily or a weekly basis. When new vulnerabilities are found, Snyk notifies you via email and opens automated pull requests with fixes for your repositories.
+Snyk scans your Projects on either a daily or a weekly basis. When Snyk finds new vulnerabilities, it notifies you by email and opens automated pull requests with fixes for your repositories.
The example that follows shows a fix pull request opened by Snyk.
@@ -105,11 +105,11 @@ Scroll down to the **Automatic fix PRs** section and set the options. For defini
For availability with Snyk Broker, see the [Commit signing](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/snyk-broker-commit-signing) page in the Broker docs.
{% endhint %}
-All the commits in Snyk's pull requests are done by `snyk-bot@snyk.io` (a verified user on GitHub), and signed with a PGP key. All Snyk pull requests appear as verified on GitHub, thus providing your developers with the confidence that the fix and upgrade pull requests are generated by a trusted source.
+All the commits in Snyk pull requests are done by `snyk-bot@snyk.io` (a verified user on GitHub), and signed with a PGP key. All Snyk pull requests appear as verified on GitHub, giving your developers the confidence that a trusted source generates the fix and upgrade pull requests.
#### Pull request status checks
-The Snyk [PR Checks](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/pull-request-checks) feature allows Snyk to test any new PR in your repositories for security vulnerabilities and sends a status check to GitHub. This lets you see, directly in GitHub, whether or not the pull request introduces new security issues.
+The Snyk [PR Checks](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/pull-request-checks) feature lets Snyk test any new PR in your repositories for security vulnerabilities and sends a status check to GitHub. This lets you see, directly in GitHub, whether the pull request introduces new security issues.
This example shows how Snyk PR checks appear on the GitHub pull request page.
@@ -123,16 +123,16 @@ You can review and adjust the pull request test settings using the Snyk GitHub I
In non-brokered GitHub integrations, operations that are triggered through the Snyk Web UI, for example, opening a Fix PR or re-testing a Project, are performed on behalf of the acting user.
-Therefore, a user who wants to perform this operation on GitHub through the Snyk UI must connect their GitHub account to Snyk with the required permission scope for the repositories where they want to perform these operations. See [GitHub and GitHub Enterprise permissions requirements](../user-permissions-and-access-scopes.md#github-and-github-enterprise-permissions-requirements) for details.
+Therefore, a user who wants to perform this operation on GitHub through the Snyk Web UI must connect their GitHub account to Snyk with the required permission scope for the repositories where they want to perform these operations. See [GitHub and GitHub Enterprise permissions requirements](../user-permissions-and-access-scopes.md#github-and-github-enterprise-permissions-requirements) for details.
Operations that are not triggered through the Snyk Web UI, such as daily and weekly tests and automatic PRs (fix and upgrade), are performed on behalf of random Snyk Organization members who have connected their GitHub accounts to Snyk and have the required permission scope for the repository.
-For public repositories that are non-brokered, some operations, such as creating the PR, may occasionally be performed by `snyk-bot@snyk.io`.
+For public repositories that are non-brokered, `snyk-bot@snyk.io` occasionally performs some operations, such as creating the PR.
{% hint style="info" %}
A Snyk Organization administrator can [designate a specific GitHub account to use for opening fix and upgrade PRs](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/snyk-pull-or-merge-requests/opening-fix-and-upgrade-pull-requests-from-a-fixed-github-account).
-Note that Snyk will continue to use a random Snyk Organization member's GitHub account to perform all the other operations. Therefore using this feature does not eliminate the need to connect users' GitHub accounts to Snyk.
+Note that Snyk continues to use a random Snyk Organization member's GitHub account to perform all the other operations. Therefore, using this feature does not eliminate the need to connect users' GitHub accounts to Snyk.
{% endhint %}
### How to set up a GitHub account to open Snyk PRs and enable the Pull Request Experience
@@ -140,12 +140,12 @@ Note that Snyk will continue to use a random Snyk Organization member's GitHub a
You can designate a specific GitHub account to open fix and upgrade pull requests, and enable the [Pull Request Experience](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/pull-request-checks/pull-request-experience).
{% hint style="info" %}
-The configured account is only used for opening PRs and posting issue summary and inline comments. All other operations are still performed on behalf of a randomly selected Snyk Organization member who has connected their GitHub accounts to Snyk.
+The configured account is used only for opening PRs and posting issue summary and inline comments. All other operations are still performed on behalf of a randomly selected Snyk Organization member who has connected their GitHub accounts to Snyk.
{% endhint %}
To use this feature, follow these steps:
-1. Navigate to the GitHub Integrations settings page in the Snyk Web UI using Organization **Settings** **Integrations** > **Source control** > **GitHub**.
+1. Navigate to the GitHub Integrations settings page in the Snyk Web UI using Organization **Settings** > **Integrations** > **Source control** > **GitHub**.
2. In the **Open Snyk automatic PRs from a fixed GitHub account** section, enter your GitHub personal access token.\
You can [generate this from your GitHub account](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token).
3. Click **Save** to enable this feature.
@@ -168,13 +168,13 @@ The Auto-assign PRs feature is supported only for private repositories.
Snyk can automatically assign the pull requests it creates to ensure that they are handled by the right team members.
-Auto-assign for PRs can be enabled for the GitHub and GitHub Enterprise integration and all Projects imported via GitHub, or on a per-Project basis.
+You can enable Auto-assign for PRs for the GitHub and GitHub Enterprise integration and all Projects imported using GitHub, or on a per-Project basis.
-Users can either be manually specified, and all will be assigned, or automatically selected based on the last commit user account.
+You can either specify users manually, and Snyk assigns all of them, or select them automatically based on the last commit user account.
#### Enable Auto-assign for all Projects in the GitHub integration
-To configure the Auto-assign settings for all the Projects from an imported private repository, go to the Github integration settings using Organization **Settings** > **Integrations** > **Source control** > **GitHub** and select **Enable pull request assignees**.
+To configure the Auto-assign settings for all the Projects from an imported private repository, navigate to the Github integration settings using Organization **Settings** > **Integrations** > **Source control** > **GitHub** and select **Enable pull request assignees**.
You can then choose to assign PRs to the last user to change the manifest file or specified contributors.
@@ -191,7 +191,7 @@ To configure the Auto-assign settings for a specific Project from an imported pr
1. In the **Projects** tab for your Organization, select and expand the relevant private repository, select a Target, and click the **Settings** cog. This opens the Project page.
2. On the Project page, apply unique settings for that specific Project.\
Select the **Settings** tab in the upper right and the **Github integration** \_\_ option in the left sidebar.
-3. Go to the **Pull request assignees for private repos** section at the bottom of the page and choose to **Inherit from integration settings** or **Customize only for this Project**.
+3. Navigate to the **Pull request assignees for private repos** section at the bottom of the page and choose to **Inherit from integration settings** or **Customize only for this Project**.
4. Ensure **Auto-assign PRs for this private Project** is enabled.
5. Choose to assign PRs to the last user to change the manifest file or named contributors.
@@ -199,32 +199,32 @@ To configure the Auto-assign settings for a specific Project from an imported pr
### How to disable the GitHub integration
-The GitHub SCM integration leverages the OAuth app integration. If you integrated GitHub without using Snyk Broker, you can disconnect it by following these steps:
+The GitHub SCM integration uses the OAuth app integration. If you integrated GitHub without using Snyk Broker, you can disconnect it by following these steps:
1. In GitHub, log in to the GitHub account that you used to create the integration.
-2. Go to your GitHub account settings and select the **Applications** option in the left sidebar.
+2. Navigate to your GitHub account settings and select the **Applications** option.
3. Select the **Authorized OAuth Apps** tab.\
You can also reach the [Authorized OAuth Apps tab directly](https://github.com/settings/applications).
-4. Find the **Snyk** entry, click the three (3) dots on the right, and select **Revoke**.
+4. Find the **Snyk** entry, click the three dots, and select **Revoke**.
Revoke OAuth authorization
-Revoking this access effectively disconnects Snyk’s access to that GitHub account.
+Revoking this access disconnects Snyk access to that GitHub account.
-* Existing imported snapshots will persist in Snyk and continue to be re-scanned based on the existing snapshots until deleted.
-* Snyk will no longer be able to import new Projects from the GitHub integration and will no longer re-scan on new code merges.
+* Existing imported snapshots persist in Snyk and continue to be re-scanned based on the existing snapshots until deleted.
+* Snyk can no longer import new Projects from the GitHub integration and no longer re-scans on new code merges.
In addition, you must confirm that Snyk is not enabled on any existing **Branch protection rules**.
{% hint style="info" %}
-Note that branch protection is active only after a PR has been raised.
+Note that branch protection is active only after a PR is raised.
{% endhint %}
-1. From the main page of your GitHub repository, go to **Settings** > **Branches** > **Branch protection rules**.
+1. From the main page of your GitHub repository, navigate to **Settings** > **Branches** > **Branch protection rules**.
2. Ensure there are no **Status checks found in the last week for this repository**.
{% hint style="info" %}
-A disconnected GitHub integration will still appear as configured in the Integrations menu of the Snyk UI. However, clicking on the integration settings will show that it is not connected. In this case, the "configured" integration can safely be ignored.
+A disconnected GitHub integration still appears as configured in the Integrations menu of the Snyk Web UI. However, clicking the integration settings shows that it is not connected. In this case, you can safely ignore the "configured" integration.
{% endhint %}
### Migrate to the GitHub Enterprise integration
@@ -235,19 +235,19 @@ Before deleting Snyk Projects imported using the GitHub integration, consider th
Before you configure and Import Projects using the [GitHub Enterprise integration](github-enterprise.md), Snyk recommends removing all Projects imported using the GitHub integration. This avoids having duplicate Snyk Projects.
-You can remove Projects imported using the GitHub integration manually by removing the Projects from Snyk. However, depending on how many Projects you have already imported using the GitHub integration, it may be easier for you to create a new Snyk Organization.
+You can remove Projects imported using the GitHub integration manually by removing the Projects from Snyk. However, depending on how many Projects you have already imported using the GitHub integration, it might be easier for you to create a new Snyk Organization.
-If you have already created multiple Snyk Organizations and Projects have been imported from GitHub to each Organization, it may be easier to re-create the Snyk Organizations to use the Snyk GitHub Enterprise integration than to update each one manually. If you choose to do this, you can copy integration settings from an existing Organization to avoid having to re-configure other integrations.
+If you have already created multiple Snyk Organizations and imported Projects from GitHub to each Organization, it might be easier to re-create the Snyk Organizations to use the Snyk GitHub Enterprise integration than to update each one manually. If you choose to do this, you can copy integration settings from an existing Organization to avoid having to re-configure other integrations.
#### Migration steps
If you already have multiple Snyk Organizations with Projects imported using the GitHub integration, follow these steps to migrate from GitHub integration to GitHub Enterprise integration.
-1. Create a new Snyk Organization that will be used as the template for all others. You can copy integration settings from an existing Organization if required.
-2. In this new template Organization, set up the Snyk GitHub Enterprise integration using the steps on the page [GitHub Enterprise integration](github-enterprise.md#how-to-set-up-the-github-enterprise-integration). The dedicated GitHub service account in those steps is a separate user account that you will use as the connection between Snyk and GitHub.
-3. When the Snyk GitHub Enterprise integration is configured, you can import a Project to your template Organization to test that the integration is working as expected.
-4. You can now create new Organizations that will replace the existing Organizations that were configured using the GitHub integration. As you create each new Organization, ensure that you copy the integration settings from this template Organization so that the GitHub Enterprise integration is available.
+1. Create a new Snyk Organization to use as the template for all others. You can copy integration settings from an existing Organization if required.
+2. In this new template Organization, set up the Snyk GitHub Enterprise integration using the steps on the page [GitHub Enterprise integration](github-enterprise.md#how-to-set-up-the-github-enterprise-integration). The dedicated GitHub service account in those steps is a separate user account that you use as the connection between Snyk and GitHub.
+3. When the Snyk GitHub Enterprise integration is configured, you can import a Project to your template Organization to test that the integration works as expected.
+4. You can now create new Organizations to replace the existing Organizations that were configured using the GitHub integration. As you create each new Organization, ensure that you copy the integration settings from this template Organization so that the GitHub Enterprise integration is available.
5. Now that your new Organizations are created, you can import your Projects, choosing the GitHub Enterprise integration when you select the source.
6. You can now remove the previous Organizations that were configured using the GitHub integration.
-You may want to [disconnect your GitHub integration](github-enterprise.md#how-to-disconnect-the-github-enterprise-integration) to avoid unintentionally importing Projects using the GitHub integration in the future. Because the GitHub integration is configured per user account, rather than per Organization, each user who has set up the GitHub integration must complete this disconnection process individually.
+You might want to [disconnect your GitHub integration](github-enterprise.md#how-to-disconnect-the-github-enterprise-integration) to avoid unintentionally importing Projects using the GitHub integration in the future. Because the GitHub integration is configured per user account, rather than per Organization, each user who has set up the GitHub integration must complete this disconnection process individually.
diff --git a/developer-tools/scm-integrations/organization-level-integrations/gitlab.md b/developer-tools/scm-integrations/organization-level-integrations/gitlab.md
index 302d3dcaa4fc..b9688c7bedc3 100644
--- a/developer-tools/scm-integrations/organization-level-integrations/gitlab.md
+++ b/developer-tools/scm-integrations/organization-level-integrations/gitlab.md
@@ -5,7 +5,7 @@
The GitLab integration is available only with Enterprise plans. For more information, see [plans and pricing](https://snyk.io/plans/).
-[Snyk Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/snyk-broker) is required if you are integrating from a private network.
+You need [Snyk Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/snyk-broker) if you are integrating from a private network.
{% endhint %}
### Prerequisites for GitLab integration
@@ -15,7 +15,7 @@ The GitLab integration is available only with Enterprise plans. For more informa
### GitLab integration features
-The GitLab integration allows you to:
+The GitLab integration lets you:
1. Check for vulnerabilities in your pull requests.
2. From the **Report** page or the **Project** page on the Snyk Web UI, [trigger a Snyk pull request](gitlab.md#fix-vulnerabilities-with-snyk-merge-requests) for the fixes listed.
@@ -28,13 +28,13 @@ To set up the GitLab integration with Snyk, create a GitLab access token and ent
Typically, the first user in a Snyk Organization, a [Snyk admin](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/#user-types) and GitLab Owner or Maintainer, sets up an integration with a **GitLab Personal Access Token** or **Group Access Token**. This token is then authenticated with GitLab, enabling access by Snyk to the repositories in that GitLab account.
-* A **GitLab Personal Access Token** is used to perform actions on and manage personal GitLab projects individually. These differ from Group Access Tokens as they are attached to a user rather than a GitLab group. For Snyk Essentials to show all repositories from GitLab, the user generating the PAT should be part of the GitLab group where their GitLab permissions can be a minimum of Guest.
-* A **GitLab Group Access Token** is used to perform actions for and manage more than one GitLab project within a GitLab group. The Group Access Token also grants access to all GitLab projects in a GitLab group or subgroup without contributing to GitLab's licensed user count.
+* A **GitLab Personal Access Token** performs actions on and manages personal GitLab projects individually. These differ from Group Access Tokens because they are attached to a user rather than a GitLab group. For Snyk Essentials to show all repositories from GitLab, the user generating the PAT must be part of the GitLab group where their GitLab permissions can be a minimum of Guest.
+* A **GitLab Group Access Token** performs actions for and manages more than one GitLab project in a GitLab group. The Group Access Token also grants access to all GitLab projects in a GitLab group or subgroup without contributing to the licensed user count in GitLab.
-To trigger the creation of fix pull requests manually, all users in a Snyk Organization can add and work with any related Snyk Projects, while the merge requests themselves will appear in GitLab as having been opened by the Snyk admin who set up the configuration.
+To trigger the creation of fix pull requests manually, all users in a Snyk Organization can add and work with any related Snyk Projects, while the merge requests themselves appear in GitLab as opened by the Snyk admin who set up the configuration.
{% hint style="warning" %}
-Group Access Tokens can only be created by a GitLab Owner using a GitLab Premium or Ultimate [account tier](https://about.gitlab.com/pricing/). This can be done in [GitLab's web UI](https://docs.gitlab.com/ee/user/group/settings/group_access_tokens.html), their Rails console, or through the GitLab API.
+Only a GitLab Owner using a GitLab Premium or Ultimate [account tier](https://about.gitlab.com/pricing/) can create Group Access Tokens. You can do this in the [GitLab web UI](https://docs.gitlab.com/ee/user/group/settings/group_access_tokens.html), the Rails console, or through the GitLab API.
{% endhint %}
### How to set up the GitLab integration
@@ -52,7 +52,7 @@ Group Access Tokens can only be created by a GitLab Owner using a GitLab Premium
Generating a GitLab Group Access Token requires selecting the Maintainer role for access.
-Selecting the **api** scope with a **Maintainer** role allows Snyk to authenticate user accounts and create webhooks, enabling the following:
+Selecting the **api** scope with a **Maintainer** role lets Snyk authenticate user accounts and create webhooks, enabling the following:
* Automation of fix pull requests and Snyk tests on your pull requests.
* Manual creation of fix pull requests.
@@ -73,12 +73,12 @@ Selecting the **api** scope with a **Maintainer** role allows Snyk to authentica
#### Fix vulnerabilities with Snyk merge requests
-When viewing a Snyk test report for a Snyk Project that you own or when looking at a GitLab Project that you are watching with Snyk, you see two options for fixing a vulnerability:
+When viewing a Snyk test report for a Snyk Project that you own or when looking at a GitLab Project that you are watching with Snyk, you see two (2) options for fixing a vulnerability:
* **Fix these vulnerabilities**: generate a Snyk merge request with the minimal changes needed to fix all the Snyk Project's detected vulnerabilities.
* **Fix this vulnerability**: generate a Snyk merge request on an individual issue that fixes the vulnerability.
-You can review the vulnerabilities that will be fixed, change your selection with the checkboxes, and choose to ignore any vulnerabilities that cannot be fixed now before opening the merge request on the **Open a Fix Merge Request** page.
+You can review the vulnerabilities that Snyk fixes, change your selection with the checkboxes, and choose to ignore any vulnerabilities that cannot be fixed now before opening the merge request on the **Open a Fix Merge Request** page.
{% hint style="info" %}
GitLab webhooks send out an event to Snyk when merge requests occur. This starts a series of other events, such as pulling GitLab project files, running the test process, and posting the results to GitLab, all of which occur on the Snyk side.
@@ -86,14 +86,14 @@ GitLab webhooks send out an event to Snyk when merge requests occur. This starts
#### Receive email alerts for new vulnerabilities
-When a new vulnerability is detected on a Snyk Project you are watching, Snyk will send you an email with a generated Snyk merge request to address the vulnerability.
+When Snyk detects a new vulnerability on a Snyk Project you are watching, it sends you an email with a generated Snyk merge request to address the vulnerability.
#### Receive email alerts for new upgrades or patches
-You may find yourself in a situation where no upgrade is found for a vulnerability, and only a patch is available. When a fix does become available, Snyk notifies you by email and generates a merge request containing the new fix.
+You might find yourself in a situation where no upgrade is found for a vulnerability, and only a patch is available. When a fix does become available, Snyk notifies you by email and generates a merge request containing the new fix.
{% hint style="warning" %}
-Patching is only available on Node.js Projects.
+Patching is available only on Node.js Projects.
{% endhint %}
### How to disconnect the GitLab integration
@@ -101,7 +101,7 @@ Patching is only available on Node.js Projects.
{% hint style="warning" %}
Disconnecting the GitLab integration removes all Snyk webhooks, along with the Snyk credentials, and deactivates the GitLab Projects in the Snyk Web UI.
-The Projects will be set to inactive, and you will no longer get alerts, pull requests, or Snyk tests on your pull requests.
+The Projects are set to inactive, and you no longer get alerts, pull requests, or Snyk tests on your pull requests.
{% endhint %}
1. Navigate to the Snyk GitLab integration **Settings**.
@@ -110,9 +110,9 @@ The Projects will be set to inactive, and you will no longer get alerts, pull re
Confirm disconnecting from GitLab
-After GitLab is disconnected, Snyk Projects imported from GitLab will be set to inactive, and you will no longer get alerts, pull requests, or Snyk tests on pull requests. The webhook that enables the integration for this repository will be removed.
+After GitLab is disconnected, Snyk Projects imported from GitLab are set to inactive, and you no longer get alerts, pull requests, or Snyk tests on pull requests. Snyk removes the webhook that enables the integration for this repository.
-You can re-connect anytime; however, re-initiating GitLab projects for monitoring requires setting up the integration again.
+You can re-connect anytime. However, re-initiating GitLab projects for monitoring requires setting up the integration again.
### GitLab integration Troubleshooting
diff --git a/developer-tools/scm-integrations/scm-integrations-and-snyk-broker.md b/developer-tools/scm-integrations/scm-integrations-and-snyk-broker.md
index 90431c89c035..90e046de669f 100644
--- a/developer-tools/scm-integrations/scm-integrations-and-snyk-broker.md
+++ b/developer-tools/scm-integrations/scm-integrations-and-snyk-broker.md
@@ -10,7 +10,7 @@ You can find on [GitHub](https://github.com/snyk/broker/tree/565242baf003f06f445
## Integrated SCM tokens for classic Broker
-An integrated SCM token is required for [Broker client setup](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/classic-broker/prepare-snyk-broker-for-deployment). It is used in the `-e _TOKEN` parameter, for example, `-e GITHUB_TOKEN=xxx…`, to enable access to the SCM. These meet certain permissions needed for the operation of Broker and Snyk Code.
+An integrated SCM token is required for [Broker client setup](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/classic-broker/prepare-snyk-broker-for-deployment). You use it in the `-e _TOKEN` parameter, for example, `-e GITHUB_TOKEN=xxx…`, to enable access to the SCM. These tokens meet certain permissions needed for the operation of Broker and Snyk Code.
An integrated SCM token can be generated for the following SCM integrations:
@@ -67,15 +67,15 @@ https://github.com/settings/apps/new?name=Snyk&description=Snyk%20helps%20you%20
* Snyk EU: `https%3A%2F%2Fapp.eu.snyk.io`
* Snyk AU: `https%3A%2F%2Fapp.au.snyk.io`
-3. After the value is replaced, navigate to that URL in your browser.\
- This will take you to the app creation screen in your GitHub Cloud instance with all the required details pre-filled.
+3. After you replace the value, navigate to that URL in your browser.\
+ This takes you to the app creation screen in your GitHub Cloud instance with all the required details pre-filled.
4. Scroll to the end of the page. Ensure that **Any account** is selected, and then click **Create GitHub App**.
5. Make a note of the `ClientId` and `AppId`. Store these safely and treat them as secrets. You must enter these credentials when you create the Universal Broker connection to your GitHub Cloud app.
6. Click the **generate a private key** link.\
This initiates the download of a `.pem` file. Store this file safely and treat it as a secret. You must enter the path to this file when you create the Universal Broker connection to your GitHub Cloud app.\
- Your GitHub Cloud App is now ready to be installed in repositories in your Snyk Organization.
+ Your GitHub Cloud App is now ready to install in repositories in your Snyk Organization.
7. Scroll to the top of the page and click **Install App** on the navigation panel. Click the **Install** button for your app.
-8. Choose where you want to install the app in your GitHub organization. It can be installed in specific repositories or all of them.
+8. Choose where you want to install the app in your GitHub organization. You can install it in specific repositories or all of them.
{% hint style="info" %}
If you choose to install the app only in specific repositories, the app works only in those repositories. You can return to this screen and edit where the app is installed if you want to add it to additional repositories.
@@ -105,7 +105,7 @@ Before the GitHub Cloud App can be used with the Universal Broker, you must crea
1. Run the `snyk-broker-config workflows connections create` command. Choose the `github-cloud-app` option and provide the information you are prompted for in the workflow.
2. Run `snyk-broker-config workflows connections integrate` to integrate the newly created connection to the Organization of your choice. Enter the Organization ID when you are prompted.
-Visit the integrations page in Snyk to verify that the integration has been configured.
+Visit the integrations page in Snyk to verify that the integration is configured.
See the [Universal Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/universal-broker) documentation for more details.
@@ -137,15 +137,15 @@ To use the GitHub Server App with Universal Broker you must create your own GitH
* Snyk AU: https%3A%2F%2Fapp.au.snyk.io
* Snyk US-02: https%3A%2F%2Fapp.us.snyk.io
-3. After these values are replaced, navigate to that URL in your browser.\
- This will take you to the app creation screen in your GitHub Server instance with all the required details pre-filled.
+3. After you replace these values, navigate to that URL in your browser.\
+ This takes you to the app creation screen in your GitHub Server instance with all the required details pre-filled.
4. Scroll to the end of the page. Ensure that **Any account** is selected, and then click **Create GitHub App**.
5. Make a note of the `ClientId` and `AppId`. Store these safely and treat them as secrets. You must enter these credentials when you create the Universal Broker connection to your GitHub Server app.
6. Click the **generate a private key** link.\
This initiates the download of a `.pem` file. Store this file safely and treat it as a secret. You must enter the path to this file when you create the Universal Broker connection to your GitHub Server app.\
- Your GitHub Server App is now ready to be installed in repositories in your Snyk Organization.
+ Your GitHub Server App is now ready to install in repositories in your Snyk Organization.
7. Scroll to the top of the page and click **Install App** on the navigation panel. Click the **Install** button for your app.
-8. Choose where you want to install the app in your GitHub organization. It can be installed in specific repositories or all of them.
+8. Choose where you want to install the app in your GitHub organization. You can install it in specific repositories or all of them.
{% hint style="info" %}
If you choose to install the app only in specific repositories, the app works only in those repositories. You can return to this screen and edit where the app is installed if you want to add it to additional repositories.
@@ -158,7 +158,7 @@ If you choose to install the app only in specific repositories, the app works on
### Create the Universal Broker connection for your GitHub Server App
-Before the GitHub Server App can be used with the Universal Broker, you must create a connection of the `github-server-app` type using the `snyk-broker-config` tool. For more details, see the [Universal Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/universal-broker) documentation. After the connection is created, it can be integrated with one or more Organization(s) of your choice.
+Before the GitHub Server App can be used with the Universal Broker, you must create a connection of the `github-server-app` type using the `snyk-broker-config` tool. For more details, see the [Universal Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/universal-broker) documentation. After you create the connection, you can integrate it with one or more Organizations of your choice.
#### Prerequisites
@@ -174,6 +174,6 @@ Before the GitHub Server App can be used with the Universal Broker, you must cre
1. Run the `snyk-broker-config workflows connections create` command. Choose the `github-server-app` option and provide the information you are prompted for in the workflow.
2. Run `snyk-broker-config workflows connections integrate` to integrate the newly created connection to the Organization of your choice. Enter the Organization ID when you are prompted.
-Visit the integrations page in Snyk to see that the integration has been configured.
+Visit the integrations page in Snyk to see that the integration is configured.
See the [Universal Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/universal-broker) documentation for more details.
diff --git a/developer-tools/scm-integrations/user-permissions-and-access-scopes.md b/developer-tools/scm-integrations/user-permissions-and-access-scopes.md
index b6922b9a3eb7..cec35aecc1e2 100644
--- a/developer-tools/scm-integrations/user-permissions-and-access-scopes.md
+++ b/developer-tools/scm-integrations/user-permissions-and-access-scopes.md
@@ -1,6 +1,6 @@
# User permissions and access scopes
-Snyk SCM integrations may require different permission requirements based on the connection method.
+Snyk SCM integrations can require different permissions based on the connection method.
See the following for detailed permission requirements:
@@ -28,7 +28,7 @@ A PAT generated for the Group-level GitHub integration requires the following pe
For information about token permissions in a brokered integration, see [GitHub - prerequisites and steps to install and configure Broker](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-broker/classic-broker/install-and-configure-snyk-broker/github-prerequisites-and-steps-to-install-and-configure-broker) and [Integrated SCM tokens for Snyk Broker](scm-integrations-and-snyk-broker.md#integrated-scm-tokens-for-classic-broker).
{% endhint %}
-The Snyk GitHub Enterprise integration is bound to a single user, preferably a GitHub service account. The level of access for the integration is defined by the combination of the user's permissions in GitHub and the access defined for the Personal Access Token (PAT) on that user's account. If the PAT is defined with more permission than the user's GitHub account, the integration will not be able to use that permission.
+The Snyk GitHub Enterprise integration is bound to a single user, preferably a GitHub service account. The combination of the user's permissions in GitHub and the access defined for the Personal Access Token (PAT) on that user's account defines the level of access for the integration. If the PAT has more permission than the user's GitHub account, the integration cannot use that permission.
The following table details the access scopes required in GitHub and GitHub Enterprise for Personal Access Tokens (PAT) and the scopes required for Snyk to perform the required operations on monitored repositories, such as reading manifest files on a frequent basis and opening fix or upgrade PRs. GitHub custom roles are not supported.
@@ -55,7 +55,7 @@ Snyk uses SCM webhooks to:
### GitHub Cloud App permission requirements
-The [Snyk GitHub Cloud App](organization-level-integrations/github-cloud-app.md) integration uses role-based access control, meaning access control is not dependent on individual users or their role, it is instead tied to the app entity.
+The [Snyk GitHub Cloud App](organization-level-integrations/github-cloud-app.md) integration uses role-based access control. Access control does not depend on individual users or their role; instead, it is tied to the app entity.
To set up the GitHub Cloud app integration, you must be a:
@@ -64,7 +64,7 @@ To set up the GitHub Cloud app integration, you must be a:
* GitHub Repository Admin (if installing through the GitHub UI).
{% hint style="info" %}
-While some permissions may be optional from GitHub’s perspective, they are necessary to support Snyk functions. These permissions cannot be customized for your individual needs because the app is registered under the Snyk Organization.
+While some permissions are optional from GitHub’s perspective, they are necessary to support Snyk functions. You cannot customize these permissions for your individual needs because the app is registered under the Snyk Organization.
{% endhint %}
The following table states the required GitHub App permissions and scopes:
@@ -130,7 +130,7 @@ Scope by Purpose
|
Importing new projects to Snyk: Lists available repos in the Bitbucket instance in the Add Projects screen.
|
read:project:bitbucket
read:workspace:bitbucket
read:account
read:user:bitbucket
|
|
Snyk Group Level Integrations: Required for Inventory and Essentials
|
read:repository:bitbucket
read:user:bitbucket read:workspace:bitbucket
|
-When reviewing the token scopes, they are listed by access level. Please review to ensure that you have the correct scopes:
+Bitbucket lists the token scopes by access level. Review them to ensure that you have the correct scopes:
| READ | WRITE |
| -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------- |
diff --git a/developer-tools/scm-integrations/workspaces.md b/developer-tools/scm-integrations/workspaces.md
index 3dfd4c302ab3..ff617c85602c 100644
--- a/developer-tools/scm-integrations/workspaces.md
+++ b/developer-tools/scm-integrations/workspaces.md
@@ -1,22 +1,22 @@
# Workspaces
{% hint style="info" %}
-Workspaces improve the accuracy and reliability of Snyk’s SCM integration results, especially for large-scale enterprise environments. This capability also supports additional functionality and improvements we have planned in the future. For these reasons, Snyk strongly recommends [enabling this option](workspaces.md#manage-workspaces) by default at your Group level.
+Workspaces improve the accuracy and reliability of the SCM integration results in Snyk, especially for large-scale enterprise environments. This capability also supports additional functionality and improvements we have planned in the future. For these reasons, Snyk strongly recommends [enabling this option](workspaces.md#manage-workspaces) by default at your Group level.
{% endhint %}
Workspaces represents a significant step forward in providing you with the most reliable and accurate vulnerability detection possible.
-Traditionally, Snyk has accessed repository contents using SCM APIs, which impose primary and secondary rate limits, and content limits. For example, the GitHub.com APIs are rate-limited to allow only a certain number of requests per hour, and there is a limit on the number of tree entries that can be retrieved from the Git database.
+Traditionally, Snyk accessed repository contents using SCM APIs, which impose primary and secondary rate limits, and content limits. For example, the GitHub.com APIs are rate-limited to allow only a certain number of requests per hour, and there is a limit on the number of tree entries that can be retrieved from the Git database.
-When repository contents are retrieved over these APIs, these limitations inhibit Snyk’s providing a complete analysis in a number of ways, especially across a very large number of repositories, or for repositories containing more than 100,000 files, sometimes referred to as monorepos.
+When Snyk retrieves repository contents over these APIs, these limitations inhibit Snyk from providing a complete analysis in a number of ways, especially across a large number of repositories, or for repositories containing more than 100,000 files, sometimes referred to as monorepos.
-Through Workspaces, these limitations are removed.
+Workspaces removes these limitations.
-The accuracy of results is improved in a number of ways through cloning. Since Snyk can access a complete view of a source code repository at a specific commit SHA, including repositories containing more than 100,000 files, the analysis is also more complete through cloning.
+Cloning improves the accuracy of results in a number of ways. Because Snyk can access a complete view of a source code repository at a specific commit SHA, including repositories containing more than 100,000 files, the analysis is also more complete through cloning.
## Snyk data ingestion
-When Workspaces is enabled, Snyk will ingest, through configured SCM integrations, a temporary and shallow clone of repository contents at a given commit and all commit metadata (including the commit message, authors, and timestamp).
+When Workspaces is enabled, Snyk ingests, through configured SCM integrations, a temporary and shallow clone of repository contents at a given commit and all commit metadata (including the commit message, authors, and timestamp).
{% hint style="info" %}
For more information on Snyk data processing and safeguards concerning Git repo cloning, see [Cache retention period related to vulnerability source data](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/how-snyk-handles-your-data#cache-retention-period-related-to-vulnerability-source-data) and [Snyk integrations: workspaces](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/how-snyk-handles-your-data#snyk-integrations-workspaces).
@@ -28,15 +28,15 @@ Repositories are cloned using HTTPS. SSH-based clones are unavailable.
## Manage Workspaces
-The Workspaces feature is managed through the **Integrations settings** page on the Group or Organization level. To do so, you must be a Snyk Group Admin or Snyk Organization Admin.
+You manage the Workspaces feature through the **Integrations settings** page on the Group or Organization level. To do so, you must be a Snyk Group Admin or Snyk Organization Admin.
-When Workspaces is enabled at the Group level, all Organizations within that Group have Workspaces enabled. This Group level setting can be overridden by the individual Organization level setting.
+When Workspaces is enabled at the Group level, all Organizations in that Group have Workspaces enabled. The individual Organization level setting can override this Group level setting.
{% hint style="warning" %}
-When a Group level setting is overridden by an Organization level setting, the Organization level setting cannot be modified by any future changes made to the Group level setting.
+When an Organization level setting overrides a Group level setting, no future changes to the Group level setting can modify the Organization level setting.
{% endhint %}
-While you can choose to disable the Workspaces feature, it is important to understand doing so will hinder Snyk’s ability to scan repositories in two specific ways:
+While you can choose to disable the Workspaces feature, it is important to understand that doing so hinders the ability of Snyk to scan repositories in two specific ways:
-1. Frequency of scanning: With Workspaces disabled, Snyk will analyze repository content through SCM APIs, which typically impose primary and secondary rate limits, and content limits. For example, the GitHub.com APIs are rate-limited to allow only a certain number of requests per hour, which hinders Snyk’s ability to analyze a large number of repositories in any one hour.
-2. Completeness of scanning: With the Workspaces feature disabled, Snyk will analyze repo content through SCM APIs, which typically limit the number of tree entries that can be retrieved from the Git database, potentially leading to missed vulnerabilities. This impacts analysis of repositories containing a large number of files, sometimes referred to as monorepos.
+1. Frequency of scanning: With Workspaces disabled, Snyk analyzes repository content through SCM APIs, which typically impose primary and secondary rate limits, and content limits. For example, the GitHub.com APIs are rate-limited to allow only a certain number of requests per hour, which hinders the ability of Snyk to analyze a large number of repositories in any one hour.
+2. Completeness of scanning: With the Workspaces feature disabled, Snyk analyzes repo content through SCM APIs, which typically limit the number of tree entries that can be retrieved from the Git database, potentially leading to missed vulnerabilities. This impacts analysis of repositories containing a large number of files, sometimes referred to as monorepos.
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/README.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/README.md
index 0772b0bbb376..1288a346dc7b 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/README.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/README.md
@@ -1,6 +1,6 @@
# API End of Life (EOL) process and migration guides
-This page explains the process, key dates, and milestones associated with the end-of-life (EOL) cycle for all API endpoints. In this documentation, you will also find detailed information about [key dates](api-eol-endpoints-and-key-dates.md) and [migration guides](guides-to-migration/) for API endpoints that are in the end-of-life process.
+This page explains the process, key dates, and milestones associated with the end-of-life (EOL) cycle for all API endpoints. In this documentation, you can also find detailed information about [key dates](api-eol-endpoints-and-key-dates.md) and [migration guides](guides-to-migration/) for API endpoints that are in the end-of-life process.
## API End of Life (EOL) process
@@ -11,25 +11,25 @@ Snyk GA REST APIs are an evolution of Snyk V1 APIs because the GA REST APIs hav
* Improved performance
* Specifications for client generation
-Snyk EOL for V1 APIs and replacement with GA REST APIs will implement this improvement over the equivalent V1 APIs. As Snyk delivers more GA REST APIs, experimental and beta versions of the REST API will also reach end-of-life.
+Snyk EOL for V1 APIs and replacement with GA REST APIs implements this improvement over the equivalent V1 APIs. As Snyk delivers more GA REST APIs, experimental and beta versions of the REST API also reach end-of-life.
-Migrating from V1 API to GA REST can be a time-consuming process, and Snyk wants to ensure that you have enough time to factor in and execute migrations so that you can have the best API experience as soon as possible. The process for taking an endpoint (V1, experimental, or beta API) to EOL for seamless migration to GA REST is as follows:
+Migrating from V1 API to GA REST can be a time-consuming process, and Snyk wants to ensure that you have enough time to factor in and execute migrations so that you can have the best API experience as soon as possible. The process for taking an endpoint (V1, experimental, or beta API) to EOL for migration to GA REST is as follows:
-1. Batches of endpoints will be part of an EOL cycle that begins twice a year: one batch in January and one batch in July.
+1. Batches of endpoints are part of an EOL cycle that begins twice a year: one batch in January and one batch in July.
2. API endpoints can be included for EOL only if they have:
* A GA REST equivalent or equivalents (except in the rare case where a V1 API does not have or need a GA REST equivalent)
* Functionality parity between V1 and GA REST (unless explicitly stated otherwise in the migration guide)
* A migration guide by our field specialists for ease of migration
-3. Snyk will [publicly announce](http://updates.snyk.io/) which endpoints will be part of an EOL cycle one month before the cycle begins.
-4. On the date the EOL begins, the endpoints are deemed **deprecated**. At that point, the documentation of each endpoint will either be **removed** or have a statement added that the endpoint is deprecated. In addition, no new customers will be able to integrate with the endpoint. The endpoint will remain functional for existing customers until the end-of-life date. You can find all of the endpoints reaching end of life and the associated timelines on the [API EOL endpoints and key dates](api-eol-endpoints-and-key-dates.md) page.
-5. On a monthly basis during the EOL cadence, Snyk will temporarily halt functionality for the nominated endpoints for a period of time, increasing in duration over the course of the EOL.
-6. When we reach the EOL date, the endpoint will stop working, and you will receive an error.
+3. Snyk [publicly announces](http://updates.snyk.io/) which endpoints are part of an EOL cycle one month before the cycle begins.
+4. On the date the EOL begins, the endpoints are deemed **deprecated**. At that point, Snyk either **removes** the documentation of each endpoint or adds a statement that the endpoint is deprecated. In addition, no new customers can integrate with the endpoint. The endpoint remains functional for existing customers until the end-of-life date. You can find all of the endpoints reaching end of life and the associated timelines on the [API EOL endpoints and key dates](api-eol-endpoints-and-key-dates.md) page.
+5. On a monthly basis during the EOL cadence, Snyk temporarily halts functionality for the nominated endpoints for a period of time, increasing in duration over the course of the EOL.
+6. When we reach the EOL date, the endpoint stops working, and you receive an error.
## Types of API EOL
-The following types of EOL will take place during each cycle:
+The following types of EOL take place during each cycle:
-1. V1 API: When a GA REST equivalent or equivalents are released, Snyk will aim to include the V1 API in an end-of-life cycle as soon as possible. Users will have a six-month window to migrate off the endpoint, beginning at the public announcement in January and July.
-2. Experimental and beta: When Snyk upgrades a REST endpoint to GA that has earlier experimental or beta endpoints or both, Snyk will aim to include them in the EOL cycle as soon as possible. Users will have a 3-month window to migrate off the endpoint (starting from the public announcement in January and July).
+1. V1 API: When a GA REST equivalent or equivalents are released, Snyk aims to include the V1 API in an end-of-life cycle as soon as possible. Users have a six-month window to migrate off the endpoint, beginning at the public announcement in January and July.
+2. Experimental and beta: When Snyk upgrades a REST endpoint to GA that has earlier experimental or beta endpoints or both, Snyk aims to include them in the EOL cycle as soon as possible. Users have a three-month window to migrate off the endpoint (starting from the public announcement in January and July).
-In exceptional circumstances, Snyk may have to announce an EOL for an endpoint outside of the two announcements each year in January and July. Users will receive a one-month notice of the EOL cycle. The time window to migrate off the endpoint will follow the same windows identified for each type of EOL: a V1 API or an experimental or beta endpoint.
+In exceptional circumstances, Snyk might have to announce an EOL for an endpoint outside of the two announcements each year in January and July. Users receive a one-month notice of the EOL cycle. The time window to migrate off the endpoint follows the same windows identified for each type of EOL: a V1 API or an experimental or beta endpoint.
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/api-eol-endpoints-and-key-dates.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/api-eol-endpoints-and-key-dates.md
index 2663cfcfc0ab..6c7bbe3ac9b1 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/api-eol-endpoints-and-key-dates.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/api-eol-endpoints-and-key-dates.md
@@ -2,7 +2,7 @@
## APIs at EOL
-Beginning July 22, 2024, the following endpoints will follow the EOL process:
+Beginning July 22, 2024, the following endpoints follow the EOL process:
| Endpoint | Endpoint type | EOL date | Migration guide |
| ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------- | ---------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
@@ -18,7 +18,7 @@ Beginning July 22, 2024, the following endpoints will follow the EOL process:
A brownout occurs when Snyk temporarily suspends an endpoint from being usable, returning a `410 gone` response when a user calls the endpoint.
-Snyk brownouts for APIs that are part of an end-of-life cycle will occur at 12:00 UTC. For the end-of-life cycle beginning July 22, 2024, the brownouts will occur on the following dates. Users will see a reminder two weeks before the brownout through an announcement on [updates.snyk.io](http://updates.snyk.io/):
+Snyk brownouts for APIs that are part of an end-of-life cycle occur at 12:00 UTC. For the end-of-life cycle beginning July 22, 2024, the brownouts occur on the following dates. Users see a reminder two weeks before the brownout through an announcement on [updates.snyk.io](http://updates.snyk.io/):
| Endpoints | Brownout date | Duration |
| ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------- | -------- |
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/candidates-for-upcoming-api-end-of-life-cadences.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/candidates-for-upcoming-api-end-of-life-cadences.md
index ae51e102dba8..9c5fa15bac20 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/candidates-for-upcoming-api-end-of-life-cadences.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/candidates-for-upcoming-api-end-of-life-cadences.md
@@ -2,7 +2,7 @@
This page contains the list of V1, non-GA REST, and older versions of GA REST endpoints that are potential candidates for future end-of-life cadences. To see which endpoints are end-of-life'd, see [API EOL endpoints and key dates](api-eol-endpoints-and-key-dates.md).
-If an endpoint is listed in the table below, it does not guarantee that the endpoint will be included in the next end-of-life cadence. In addition, an endpoint can go straight into the next end-of-life cadence without having to be listed in the table below.
+If an endpoint is listed in the following table, it does not guarantee that Snyk includes the endpoint in the next end-of-life cadence. In addition, an endpoint can go straight into the next end-of-life cadence without having to be listed in the following table.
The endpoints in this list, and in any end-of-life cadence, must adhere to our end-of-life criteria, which require that the endpoints have:
@@ -10,7 +10,7 @@ The endpoints in this list, and in any end-of-life cadence, must adhere to our e
* Functionality parity between V1 and GA REST (unless explicitly stated otherwise in the migration guide)
* A migration guide by our field specialists for ease of migration
-Endpoints that are end-of-life'd do not appear in the list that follows, as the list is for future candidates for end-of-life, and can be found on the [API EOL endpoints and key dates](api-eol-endpoints-and-key-dates.md) page.
+Endpoints that are end-of-life'd do not appear in the list that follows, because the list is for future candidates for end-of-life, and can be found on the [API EOL endpoints and key dates](api-eol-endpoints-and-key-dates.md) page.
| Endpoint | Endpoint Type | Migration Guide | Date Added |
| -------- | ------------- | --------------- | ---------- |
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/list-all-projects-v1-api-to-rest-api-migration-guide-completed-migration.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/list-all-projects-v1-api-to-rest-api-migration-guide-completed-migration.md
index ebba6f81379a..89af3122b1cd 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/list-all-projects-v1-api-to-rest-api-migration-guide-completed-migration.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/list-all-projects-v1-api-to-rest-api-migration-guide-completed-migration.md
@@ -17,7 +17,7 @@ Based on OpenAPI specifications, the Snyk REST API is designed to provide a cons
The Projects REST API introduces improved data architecture to facilitate enhanced performance and separation of domains.
-Snyk understands that migrating to a new API can be a significant undertaking and wants to support you throughout the process. This comprehensive migration guide is intended to facilitate a seamless transition by providing step-by-step instructions, code examples, and best practices to help you smoothly integrate with the new API.
+Snyk understands that migrating to a new API can be a significant undertaking and wants to support you throughout the process. This comprehensive migration guide is intended to facilitate the transition by providing step-by-step instructions, code examples, and best practices to help you integrate with the new API.
If you are using the deprecated endpoint, Snyk encourages you to review this migration guide and move all your automations over before Friday, December 22, 2023.
@@ -32,7 +32,7 @@ If you are using the deprecated endpoint, Snyk encourages you to review this mig
| List all projects v1 API documentation removal | September 22, 2023 | No action needed |
| End-of-life: All access to List all projects v1 API will result in a 410 Gone response. | December 22, 2023 | Ensure migration has been completed by this time to avoid disruption to automated workflows |
-The following Snyk Tools that use the List all projects v1 API have been updated to use the [REST List all projects API](https://apidocs.snyk.io/?version=2023-05-29#get-/orgs/-org_id-/projects) instead:
+The following Snyk Tools that use the List all projects v1 API are updated to use the [REST List all projects API](https://apidocs.snyk.io/?version=2023-05-29#get-/orgs/-org_id-/projects) instead:
* [snyk-jira-tickets-for-new-vulns](https://github.com/snyk-tech-services/jira-tickets-for-new-vulns): version 5.0.0 or newer
* [snyk-api-ts-client](https://github.com/snyk-labs/snyk-api-ts-client): version 1.11.1 or newer
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/rest-issues-experimental-api-to-ga-api-migration-guide.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/rest-issues-experimental-api-to-ga-api-migration-guide.md
index 52a9bee63a9e..75b7ff6fb311 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/rest-issues-experimental-api-to-ga-api-migration-guide.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/rest-issues-experimental-api-to-ga-api-migration-guide.md
@@ -3,7 +3,7 @@
{% hint style="info" %}
**Important information about Experimental APIs**
-An experimental endpoint should be considered unstable and regarded as a tech preview. Experimental versions may introduce breaking changes and may be discontinued at any time.
+Consider an experimental endpoint unstable and regard it as a tech preview. Experimental versions can introduce breaking changes and can be discontinued at any time.
{% endhint %}
## What's new in the GA REST Issues API?
@@ -17,9 +17,9 @@ This version of the API delivers:
* **Consistency:** Improved performance and reliability of the REST Issues API
* **Depth:** detailed representations for Open Source packages and fixes
* **Flexibility:** new filters for tailored API responses
-* **Usability:** improved pagination and response management, simplifying the API interaction
+* **Usability:** improved pagination and response management for the API interaction
-Snyk understands that migrating to a new API can be a significant undertaking and wants to support you throughout the process. This comprehensive migration guide is intended to facilitate a seamless transition by providing step-by-step instructions, code examples, and best practices to help you smoothly integrate with the new API.
+Snyk understands that migrating to a new API can be a significant undertaking and wants to support you throughout the process. This comprehensive migration guide is intended to facilitate the transition by providing step-by-step instructions, code examples, and best practices to help you integrate with the new API.
If you are using the deprecated endpoint, Snyk encourages you to review this migration guide and move all your automations over.
@@ -28,7 +28,7 @@ If you are using the deprecated endpoint, Snyk encourages you to review this mig
{% hint style="info" %}
**Mapping experimental API issues to GA API issues**
-One of the main differences you will see in the table below is that the format of the ID for an issue changes from URI format (consists of key & scan\_item.id) in the Experimental API to UUID in the GA API. To match an issue in the experimental api response to the same issue in the GA API response you can use **key** and the **scan\_item.id**. Note that **scan\_item** is part of the **relationships** block and **key** is part of the **attributes** block.
+One of the main differences you see in the following table is that the format of the ID for an issue changes from URI format (consists of key & scan\_item.id) in the Experimental API to UUID in the GA API. To match an issue in the experimental api response to the same issue in the GA API response you can use **key** and the **scan\_item.id**. Note that **scan\_item** is part of the **relationships** block and **key** is part of the **attributes** block.
{% endhint %}
Fields
Experimental
GA
classes
Present
No change
coordinates
Only available for cloud issues
Available for cloud and SCA issues and has new fixability fields.
coordinates.is_fixable_manually
coordinates.is_fixable_snyk
coordinates.is_fixable_upstream
coordinates.is_patchable
coordinates.is_pinnable
coordinates.is_upgradeable
Not present
Newly introduced fixability data
coordinates.reachability
Not present
Newly introduced
coordinates.remedies
Present
No change
representations
Present
New fields
representations.resourcePath
Present
No change
respresentations.dependencyChain
Present
Removed in favor of representations.dependency
representations.dependency
Not present
Newly introduced replaces representations.
dependencyChain
representations.dependency
.package_name
representations.dependency.
package_version
Not present
Newly introduced as part of represenations.dependency
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/search-audit-logs-group-and-org-v1-api-to-ga-rest-audit-logs-api-migration-guide.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/search-audit-logs-group-and-org-v1-api-to-ga-rest-audit-logs-api-migration-guide.md
index 638dc20b7bb9..de1f6be4d958 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/search-audit-logs-group-and-org-v1-api-to-ga-rest-audit-logs-api-migration-guide.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/search-audit-logs-group-and-org-v1-api-to-ga-rest-audit-logs-api-migration-guide.md
@@ -7,11 +7,11 @@ Based on OpenAPI specifications, the Snyk REST API is designed to provide a cons
* Consistent versioning
* Improved performance
-The Search Audit Logs REST API deprecates offset-based pagination in favour of more performant and consistent cursor-based pagination. Our v1 APIs get slower the higher your page offset becomes and will eventually time out at very high page counts. We’ve improved this considerably in our REST API by using a cursor-based approach that consistently returns results at greater speeds regardless of page count.
+The Search Audit Logs REST API deprecates offset-based pagination in favor of more performant and consistent cursor-based pagination. Our v1 APIs get slower the higher your page offset becomes and eventually time out at high page counts. We’ve improved this considerably in our REST API by using a cursor-based approach that consistently returns results at greater speeds regardless of page count.
-As well as performance improvements we have also improved filtering capabilities, allowing users to provide multiple include or exclude events for finer-tuned filtering. In a addition to this, the API was only capable of searching for logs within a minimum time-frame of 24 hours, we’ve improved this with higher granularity time stamps [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339), which allows users to search within windows of minutes on a given day.
+As well as performance improvements, we have also improved filtering capabilities, letting users provide multiple include or exclude events for finer-tuned filtering. In addition to this, the API was only capable of searching for logs in a minimum time-frame of 24 hours; we’ve improved this with higher granularity time stamps [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339), which lets users search in windows of minutes on a given day.
-`` `api.access` `` logs are now excluded by default on all search queries unless explicitly provided as part of the \`events\` parameter. These are typically high-volume low-information logs that are superseded by our explicit action logs, e.g. group.create. Explicit action logs will contain richer contextual information for an action and should be favoured in all cases.
+`` `api.access` `` logs are now excluded by default on all search queries unless explicitly provided as part of the \`events\` parameter. These are typically high-volume low-information logs that are superseded by our explicit action logs, for example, group.create. Explicit action logs contain richer contextual information for an action and you should favor them in all cases.
Here is what you could use in the v1 endpoints, and their GA REST equivalents:
@@ -19,7 +19,7 @@ Here is what you could use in the v1 endpoints, and their GA REST equivalents:
## Response
-Audit log event payloads have not changed as part of the REST migration, however, the structure of the response is different to conform to our standardised JSON API responses.
+Audit log event payloads have not changed as part of the REST migration; however, the structure of the response is different to conform to our standardized JSON API responses.
The V1 response is returned as an array, e.g.
@@ -63,7 +63,7 @@ The V1 response is returned as an array, e.g.
` ``` `
-The REST response will contain the same event payload information, however, it will be in the following format:
+The REST response contains the same event payload information; however, it is in the following format:
` ``` `
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-apis-to-export-api-migration-guide.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-apis-to-export-api-migration-guide.md
index 3e6b501be0ec..c160ca8d1686 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-apis-to-export-api-migration-guide.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-apis-to-export-api-migration-guide.md
@@ -3,7 +3,7 @@
{% hint style="warning" %}
**End of life**
-The v1 Reporting API is being deprecated, and future development and support are focused on the [Dataset Export API](../../using-specific-snyk-apis/export-api-specifications-columns-and-filters.md) and the [Issues REST API](../../reference/issues.md). Snyk recommends migrating to the new [Export API](../../using-specific-snyk-apis/export-api-specifications-columns-and-filters.md).
+Snyk is deprecating the v1 Reporting API, and future development and support are focused on the [Dataset Export API](../../using-specific-snyk-apis/export-api-specifications-columns-and-filters.md) and the [Issues REST API](../../reference/issues.md). Snyk recommends migrating to the new [Export API](../../using-specific-snyk-apis/export-api-specifications-columns-and-filters.md).
{% endhint %}
This guide outlines the migration path for all routes in the legacy v1 Reporting API.
@@ -25,7 +25,7 @@ The most significant change is the shift from a direct, synchronous request/resp
To replace any v1 Reporting API call, follow these steps:
1. Initiate the Export:
- 1. Send a `POST` request with your filters to create an export job. You will receive an `export_id`.
+ 1. Send a `POST` request with your filters to create an export job. You receive an `export_id`.
2. Endpoint: `POST /groups/{group_id}/export`
3. Required Parameters: The body must include the filters (including at least one date filter: introduced or updated) and specify the dataset (issues or usage) in the request header.
2. Validate the Export Status:
@@ -33,7 +33,7 @@ To replace any v1 Reporting API call, follow these steps:
2. Endpoint: `GET /groups/{group_id}/jobs/export/{export_id}`
3. Statuses: `PENDING`, `STARTED`, `FINISHED`, `ERROR`.
3. Fetch Results in a CSV:
- 1. After `FINISHED`, fetch the results, which will return a self-signed URL to the CSV file.
+ 1. After `FINISHED`, fetch the results, which return a self-signed URL to the CSV file.
2. Endpoint: `GET /groups/{group_id}/export/{export_id}`
{% hint style="info" %}
@@ -53,7 +53,7 @@ The v1 issue count endpoints (`/v1/reporting/counts/issues` and `/latest`) relie
Key issue:
* The legacy v1 issue count endpoints do not include issues from Snyk Code, and do not include issues generated by the most recent Snyk Infrastructure as Code (IaC) engines.
-* Action: Migrating to the Export API with the issues dataset will provide a more complete and accurate count of all issues across all Snyk products, including IaC. Any count migration should be aware that the new number will likely be higher and more representative of your total issue landscape.
+* Action: Migrating to the Export API with the issues dataset provides a more complete and accurate count of all issues across all Snyk products, including IaC. For any count migration, be aware that the new number is likely to be higher and more representative of your total issue landscape.
#### Filter parameter migration
@@ -86,11 +86,11 @@ For any v1 filter not listed above (for example, `severity`, `fixable`, `languag
#### CSV to JSON Conversion Tool
-Since the Export API returns data as CSV, and the legacy API returned JSON, you will likely need to convert the exported file for structured consumption by your application.
+Because the Export API returns data as CSV, and the legacy API returned JSON, you likely need to convert the exported file for structured consumption by your application.
**Native JSON output**
-We are prioritizing adding the ability to export data directly in JSON format. It will be available early November. This feature will simplify data consumption for users migrating from the v1 API.
+We are prioritizing adding the ability to export data directly in JSON format. It is available early November. This feature streamlines data consumption for users migrating from the v1 API.
**Current workaround script**
diff --git a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-issues-and-v1-aggregated-issues-apis-to-rest-issues-api-migration-guide.md b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-issues-and-v1-aggregated-issues-apis-to-rest-issues-api-migration-guide.md
index e9f1f8a0b127..e524d25f4ee0 100644
--- a/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-issues-and-v1-aggregated-issues-apis-to-rest-issues-api-migration-guide.md
+++ b/developer-tools/snyk-api/api-end-of-life-eol-process-and-migration-guides/guides-to-migration/v1-reporting-issues-and-v1-aggregated-issues-apis-to-rest-issues-api-migration-guide.md
@@ -11,7 +11,7 @@ This page applies to the following V1 API endpoints:
* [Get list of latest issues](../../reference/reporting-api-v1.md#post-reporting-issues-latest) (`POST /reporting/issues/latest`) - not available for customers or partners in the `Snyk-US-02`, `Snyk-EU-01`, and `Snyk-AU-01` regions.
* [List all aggregated issues](../../reference/projects-v1.md#post-org-orgid-project-projectid-aggregated-issues) (`POST /org/{orgId}/project/{projectId}/aggregated-issues`)
-These APIs are subject to deprecation, and migrating to the REST Issues API immediately is highly recommended. The REST Issues API accommodates multiple regions.
+These APIs are subject to deprecation, and Snyk highly recommends migrating to the REST Issues API immediately. The REST Issues API accommodates multiple regions.
{% endhint %}
## Key benefits of the REST Issues API
@@ -30,7 +30,7 @@ The REST Issues API provides:
* Flexibility through new filters for tailored API responses.
* Enhanced usability through better pagination and response handling, streamlining API interactions.
-This migration guide is intended to facilitate a seamless transition by providing step-by-step instructions, code examples, and best practices to help you smoothly integrate with the new API.
+This migration guide is intended to facilitate the transition by providing step-by-step instructions, code examples, and best practices to help you integrate with the new API.
If you are using the V1 Issues endpoints, Snyk recommends that you migrate all your automation, API-based reporting, and integrations accordingly, by using the guidance provided here.
diff --git a/developer-tools/snyk-api/api-endpoints-index-and-tips/README.md b/developer-tools/snyk-api/api-endpoints-index-and-tips/README.md
index 0d69b68dac4e..f038ab03d516 100644
--- a/developer-tools/snyk-api/api-endpoints-index-and-tips/README.md
+++ b/developer-tools/snyk-api/api-endpoints-index-and-tips/README.md
@@ -19,7 +19,7 @@ See also the following sections on specific APIs:
For additional information, see the [API support articles](https://support.snyk.io/s/topic/0TOPU00000BgWMv4AN/snyk-api).
-This index includes the categories and names of REST GA and beta and V1 API endpoints, with the URL in the reference docs for each endpoint, and links to related information where available. REST is the default, and GA is the status unless beta is noted. V1 API is specified where applicable. This index is a work in progress; additional information is being added continually.
+This index includes the categories and names of REST GA and beta and V1 API endpoints, with the URL in the reference docs for each endpoint, and links to related information where available. REST is the default, and GA is the status unless beta is noted. V1 API is specified where applicable. This index is a work in progress; Snyk adds additional information continually.
## AccessRequests (beta)
@@ -337,7 +337,7 @@ The View Project History permission is needed to use this API.
Projects can be Git repositories, Docker images, containers, configuration files, and much more. For more information, see [Snyk Projects](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-projects); the page includes the [Targets definition](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-projects#target).
-A typical import starts with using the endpoint [Import targets](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import) to request a target to be processed. Then, use the endpoint [Get import job details](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid) to poll the Import Job AP I for further details on completion and resulting Snyk Projects.
+A typical import starts with using the endpoint [Import targets](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import) to request a target to be processed. Then, use the endpoint [Get import job details](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid) to poll the Import Job API for further details on completion and resulting Snyk Projects.
### [Import targets](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import) and [Get import job details](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid)
@@ -347,10 +347,10 @@ For information on when and how you can use Import targets, see [Gain visibility
If a call to the Import targets endpoint fails, use [Get import job detail](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid)s to help determine why. There are two types of failures:
-* The repository was rejected for processing, that is, HTTP status code 201 was not returned. This happens if there is an issue Snyk can see quickly for example:
+* The repository was rejected for processing, that is, HTTP status code 201 was not returned. This happens if there is an issue Snyk can see quickly, for example:
* The repository does not exist.
* The repository is unreachable by Snyk because the token is invalid or does not have sufficient permissions; there is no default branch.
-* The repository was accepted for processing, that is, the user got back HTTP status code 201 and a url to poll, but no projects were detected or some failed. This may occur because:
+* The repository was accepted for processing, that is, the user got back HTTP status code 201 and a url to poll, but no projects were detected or some failed. This can occur because:
* There are no Snyk-supported manifests in this repository.
* The repository is archived and the Snyk API calls to fetch files fail.
* The individual project or manifest had issues during processing. In this case Snyk returns success: false with a message in the log.
@@ -610,11 +610,11 @@ More information: [Project type responses from the API](project-type-responses-f
### [Applying (project) attributes](../reference/projects-v1.md#org-orgid-project-projectid-attributes)
-By using the API endpoint Applying attributes, you can set attributes for Snyk Projects including business criticality, lifecycle stage, and environment once the project has been created . To do so:
+By using the API endpoint Applying attributes, you can set attributes for Snyk Projects including business criticality, lifecycle stage, and environment after the project is created. To do so:
* Import the project using the API endpoint [Import targets](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import).
* Get the status API ID from [Import targets](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import).
-* Poll using the endpoint [Import job details](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid) until all imports have completed.
+* Poll using the endpoint [Import job details](../reference/import-projects-v1.md#org-orgid-integrations-integrationid-import-jobid) until all imports are completed.
* Parse the project IDs from the `projectURL` field.
* Use the endpoint [Applying attributes](../reference/projects-v1.md#org-orgid-project-projectid-attributes) to set the project attributes.
@@ -632,7 +632,7 @@ The Snyk V1 API endpoint [List all aggregated issues](../reference/projects-v1.m
### [List all Projects for an Org with the given Org ID](../reference/projects.md#orgs-org_id-projects)
-The query-string parameter for types is optional. The endpoint does not enforce specific project types and will return `no matching projects` if you enter a string that does not match a requested project type. See [Project type responses from the AP](project-type-responses-from-the-api.md)I for a list of project types.
+The query-string parameter for types is optional. The endpoint does not enforce specific project types and returns `no matching projects` if you enter a string that does not match a requested project type. See [Project type responses from the API](project-type-responses-from-the-api.md) for a list of project types.
**More information:** [Slack app (for Jira integration)](../../integrations/jira-and-slack-integrations/slack-app.md) (Use: Find your Project ID);\
[Snyk Projects](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-projects);\
@@ -670,7 +670,7 @@ The V1 Reporting endpoints support only Snyk legacy reporting, not the latest re
The V1 Reporting API underlies Snyk legacy reporting. Using the V1 Reporting API, you can find answers to questions like how many issues your Organization has, or how many tests have been conducted in a given time period.
-The rate limit is up to 70 requests per minute, per user. For all requests above the limit, the response will have the status code `429: Too many requests`, until requests stop for the duration of the rate-limiting interval (one minute). For more information see [Rate limiting for V1 API](../v1-api.md#rate-limiting).
+The rate limit is up to 70 requests per minute, per user. For all requests above the limit, the response has the status code `429: Too many requests`, until requests stop for the duration of the rate-limiting interval (one minute). For more information, see [Rate limiting for V1 API](../v1-api.md#rate-limiting).
**More information:** [Dependencies and licenses](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/dependencies-and-licenses)
@@ -832,7 +832,7 @@ To get a list of issues that have been fixed, use the endpoint [Get list of late
### [Get target by target ID](../reference/targets.md#orgs-org_id-targets-target_id)
-This endpoint retrieves a list of Snyk Targets, which is used if you want to delete Targets by target ID.
+This endpoint retrieves a list of Snyk Targets, which you use if you want to delete Targets by target ID.
### [Delete target by target ID](../reference/targets.md#orgs-org_id-targets-target_id-1)
diff --git a/developer-tools/snyk-api/api-endpoints-index-and-tips/project-issue-paths-api-endpoints.md b/developer-tools/snyk-api/api-endpoints-index-and-tips/project-issue-paths-api-endpoints.md
index 3221bc8f95d1..4a0fce3d62f3 100644
--- a/developer-tools/snyk-api/api-endpoints-index-and-tips/project-issue-paths-api-endpoints.md
+++ b/developer-tools/snyk-api/api-endpoints-index-and-tips/project-issue-paths-api-endpoints.md
@@ -2,7 +2,7 @@
The following provides information in addition to the information in the API Reference for the endpoints [List all project issue paths](../reference/projects-v1.md#org-orgid-project-projectid-issue-issueid-paths) and [List all project snapshot issue paths](../reference/snapshots-v1.md#org-orgid-project-projectid-history-snapshotid-issue-issueid-paths).
-The `paths` endpoints provide details of the paths through which an issue has been introduced.
+The `paths` endpoints provide details of the paths through which an issue is introduced.
**Requests** to the `paths` endpoint are `GET` requests. The endpoints are available at the following URLs:
@@ -51,4 +51,4 @@ In this example, an issue is introduced through two different versions of the `l
The shortest path is provided first. If an issue applies to the Project itself, it appears as the only element in the path. For issues that apply to dependencies, each path starts with a direct dependency.
-The `fixVersion` attribute is provided on the first element of each path when that path is upgradable. If the `version` attribute and `fixVersion` attributes are the same, then the upgrade will only involve re-locking transitive dependencies.
+The `fixVersion` attribute is provided on the first element of each path when that path is upgradable. If the `version` attribute and `fixVersion` attributes are the same, then the upgrade involves only re-locking transitive dependencies.
diff --git a/developer-tools/snyk-api/api-endpoints-index-and-tips/project-type-responses-from-the-api.md b/developer-tools/snyk-api/api-endpoints-index-and-tips/project-type-responses-from-the-api.md
index 39f1830bc655..c4084aac0f50 100644
--- a/developer-tools/snyk-api/api-endpoints-index-and-tips/project-type-responses-from-the-api.md
+++ b/developer-tools/snyk-api/api-endpoints-index-and-tips/project-type-responses-from-the-api.md
@@ -2,7 +2,7 @@
The Snyk Project type, defined in the V1 API only as `the package manager of the project`, is returned from the [API v1 Projects endpoints](../reference/projects-v1.md) and from the endpoint [List all Projects for an Org with the given Org ID](../reference/projects.md#orgs-org_id-projects).
-The following is a list of the possible `type` values that may be returned.
+The following is a list of the possible `type` values that the API can return.
`apk`\
`armconfig`\
diff --git a/developer-tools/snyk-api/api-endpoints-index-and-tips/scenarios-for-using-the-snyk-api.md b/developer-tools/snyk-api/api-endpoints-index-and-tips/scenarios-for-using-the-snyk-api.md
index e17fbcea2539..5e94ec6f6781 100644
--- a/developer-tools/snyk-api/api-endpoints-index-and-tips/scenarios-for-using-the-snyk-api.md
+++ b/developer-tools/snyk-api/api-endpoints-index-and-tips/scenarios-for-using-the-snyk-api.md
@@ -26,7 +26,7 @@ Scenario: [assign-users-to-all-orgs](https://github.com/snyk-playground/cx-tools
### Add users to organizations at scale ahead of the first login
-Scenario: [Provision users to Orgs via API](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/provision-users-to-organizations-using-the-api)
+Scenario: [Provision users to Orgs using the API](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/user-management/user-management-with-the-api/provision-users-to-organizations-using-the-api)
**Endpoint used:**\
[Provision a user to the organization](../reference/organizations-v1.md#org-orgid-provision)
@@ -93,7 +93,7 @@ Scenario: [Broker-token-rotation](https://github.com/snyk-playground/cx-tools/bl
[Add new integration](../reference/integrations-v1.md#org-orgid-integrations)\
[Update existing integration](../reference/integrations-v1.md#org-orgid-integrations-integrationid) (to enable Broker)
-### For a specific event or time, disable all interactions (pull requests, tests) from Snyk to the code base (source control management repository)
+### For a specific event or time, disable all interactions (pull requests, tests) from Snyk to the codebase (source control management repository)
Scenario: [disable-all-interaction-from-snyk](https://github.com/snyk-playground/cx-tools/blob/main/scripts/disable-all-interaction-from-snyk.md) (complete procedure)
diff --git a/developer-tools/snyk-api/authentication-for-api/README.md b/developer-tools/snyk-api/authentication-for-api/README.md
index 9b549678662d..fa887de1fa0b 100644
--- a/developer-tools/snyk-api/authentication-for-api/README.md
+++ b/developer-tools/snyk-api/authentication-for-api/README.md
@@ -18,7 +18,7 @@ Enterprise users have [access to a personal access token under their profile](./
* Authenticating with the IDE manually
* Running API calls one time, for example, to test something
-Note that for free and team plan users, the personal token does not have access to the API and may be used for authenticating to IDE, CLI, and CI/CD integrations only. For details, see [Obtain and use your PAT token](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/getting-started-guides/getting-started#obtain-and-use-your-snyk-api-token).
+Note that for free and team plan users, the personal token does not have access to the API and can be used for authenticating to IDE, CLI, and CI/CD integrations only. For details, see [Obtain and use your PAT token](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/getting-started-guides/getting-started#obtain-and-use-your-snyk-api-token).
For additional information, see [Snyk PAT token permissions users can control](snyk-api-token-permissions-users-can-control.md).
@@ -30,11 +30,11 @@ You can create a personal access token through your [account settings](https://a
You can find your personal API token in your personal [account settings](https://app.snyk.io/account) after you register with Snyk and log in. In the **key** field, **Click to show**. Then highlight and copy the API key.
-If you want a new API token, select **Revoke & Regenerate.** This will make the previous API token invalid. For details, see [Revoke and regenerate a Snyk API token](revoke-and-regenerate-a-snyk-api-token.md).
+If you want a new API token, select **Revoke & Regenerate.** This makes the previous API token invalid. For details, see [Revoke and regenerate a Snyk API token](revoke-and-regenerate-a-snyk-api-token.md).
## Authenticating with a personal API token
-When using the API directly, provide the API token in an `Authorization: token` header, as in the following example request, replacing `API_TOKEN` with your token
+When using the API directly, provide the API token in an `Authorization: token` header, as in the following example request, replacing `API_TOKEN` with your token.
```bash
curl --request GET \
@@ -54,4 +54,4 @@ curl --request GET \
--header "Authorization: bearer API_TOKEN"
```
-Otherwise, a `401 Unauthorized` error will be returned.
+Otherwise, Snyk returns a `401 Unauthorized` error.
diff --git a/developer-tools/snyk-api/authentication-for-api/personal-access-tokens-pats.md b/developer-tools/snyk-api/authentication-for-api/personal-access-tokens-pats.md
index 06bd8ed45e87..1e89a2094873 100644
--- a/developer-tools/snyk-api/authentication-for-api/personal-access-tokens-pats.md
+++ b/developer-tools/snyk-api/authentication-for-api/personal-access-tokens-pats.md
@@ -4,34 +4,34 @@
A Personal Access Token (PAT) is a credential used to authenticate API, CLI, and IDE workflows.
-At any given time, you can have up to three active PATs. This is primarily to allow for downtime-free rotation journeys, where the new token can be created ahead of the old one expiring. PATs can be named, and you can choose their expiration up to a maximum of 90 days ahead. Names are solely there to help you identify tokens; they have no functional impact. Users cannot create PATs that live for more than 90 days.
+At any given time, you can have up to three active PATs. This allows for downtime-free rotation, where you can create the new token before the old one expires. You can name PATs and choose their expiration up to a maximum of 90 days ahead. Names help you identify tokens and have no functional impact. You cannot create PATs that live for more than 90 days.
-PATs are revealed only upon creation, and never after this point. Users must ensure they safely store the token itself, as the only option after this will be to revoke and create another.
+Snyk reveals PATs only upon creation, never after this point. You must safely store the token itself, because the only option afterward is to revoke and create another.
-PATs can only be created through the UI, but can be revoked through the UI and API.
+You can create PATs only through the UI, but you can revoke them through the UI and API.
-You can see the name, created date and expiry for each token of a PAT (but not the token), and these details can be seen in the UI and through the API.
+You can see the name, created date, and expiry for each PAT, but not the token, in the UI and through the API.
-## Generating a new token (UI Only)
+## Generating a new token (UI only)
1. In your account settings area, select the **Personal access tokens** tab.
-2. In the Name field, enter the name that you would like to provide your PAT. The names are solely there to help you distinguish between your PATs, and provide no other purpose.
-3. To set an expiry date, select the Expiry drop-down and select a date for your PAT to expire. The maximum date you can pick is 90 days ahead. No PAT can be created with a longer expiry.
+2. In the **Name** field, enter a name for your PAT. Names help you distinguish between your PATs and serve no other purpose.
+3. To set an expiry date, select the **Expiry** dropdown and select a date for your PAT to expire. The maximum date you can pick is 90 days ahead. You cannot create a PAT with a longer expiry.
-4. Click **Generate new token**. You have generated your PAT and will see a window appear with your token. Click **Copy** to copy your token. This is the only time the Snyk Platform will share this token with you. You must store it in a secure and accessible location as you cannot retrieve it later.
+4. Click **Generate new token**. Snyk generates your PAT and a window appears with your token. Click **Copy** to copy your token. This is the only time the Snyk Platform shares this token with you. You must store it in a secure and accessible location, because you cannot retrieve it later.
-5. If you have three PATs already, you will not be able to create another one. You must revoke one of them before being able to create any more.
+5. If you already have three PATs, you cannot create another one. You must revoke one of them before you can create any more.
## Revoking a token
1. In your account settings area, select the **Personal access tokens** tab.
-2. Next to the token that you would like to revoke, click Revoke. This results in your token being revoked. Token revocation cannot be reverted.
+2. Next to the token you want to revoke, click **Revoke**. Snyk revokes your token. You cannot revert token revocation.
diff --git a/developer-tools/snyk-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token.md b/developer-tools/snyk-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token.md
index 5683fef42253..7ff8a9dd6890 100644
--- a/developer-tools/snyk-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token.md
+++ b/developer-tools/snyk-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token.md
@@ -1,7 +1,7 @@
# Revoke and regenerate a Snyk API token
{% hint style="warning" %}
-When an API token is revoked, all integrations using that key immediately stop working. Proceed with caution!
+When you revoke an API token, all integrations using that key immediately stop working. Proceed with caution.
{% endhint %}
If you suspect an API token has been leaked, it is good practice to revoke that token and generate a new one to use in its place.
@@ -10,4 +10,4 @@ To revoke your Snyk user API token, navigate to your personal General Account Se

-Click the **Revoke & Regenerate** button to revoke your API token. A new one will be generated in its place. You can now copy the newly generated API token and update integrations that used the old token.
+Click **Revoke & Regenerate** to revoke your API token. Snyk generates a new one in its place. You can now copy the newly generated API token and update integrations that used the old token.
diff --git a/developer-tools/snyk-api/authentication-for-api/snyk-api-token-permissions-users-can-control.md b/developer-tools/snyk-api/authentication-for-api/snyk-api-token-permissions-users-can-control.md
index 25a0f026abc6..8010cd09d134 100644
--- a/developer-tools/snyk-api/authentication-for-api/snyk-api-token-permissions-users-can-control.md
+++ b/developer-tools/snyk-api/authentication-for-api/snyk-api-token-permissions-users-can-control.md
@@ -1,7 +1,7 @@
# Snyk API token permissions users can control
-To set an API token to have read-only permissions so the user is unable to write to the platform, use a service account and set it to Group Viewer.
+To set an API token to have read-only permissions so the user cannot write to the platform, use a service account and set it to Group Viewer.
-Service accounts at the Organization level have only Organization Admin and Organization Collaborator permissions. Thus, to set a service account to view only, you must use a Group-level service account.
+Service accounts at the Organization level have only Organization Admin and Organization Collaborator permissions. So, to set a service account to view only, you must use a Group-level service account.
For more information see [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
diff --git a/developer-tools/snyk-api/reference/aibom.md b/developer-tools/snyk-api/reference/aibom.md
index 8bb00b8202c9..a65b15ef02dc 100644
--- a/developer-tools/snyk-api/reference/aibom.md
+++ b/developer-tools/snyk-api/reference/aibom.md
@@ -1,4 +1,4 @@
-# AiBom
+# AI-BOM
{% hint style="info" %}
This document uses the REST API. For more details, see the [Authentication for API](../authentication-for-api/) page.
diff --git a/developer-tools/snyk-api/reference/dependencies-v1.md b/developer-tools/snyk-api/reference/dependencies-v1.md
index 0c1291fd61dd..b46fa791b7a6 100644
--- a/developer-tools/snyk-api/reference/dependencies-v1.md
+++ b/developer-tools/snyk-api/reference/dependencies-v1.md
@@ -1,7 +1,7 @@
# Dependencies (v1)
{% hint style="info" %}
-This document uses the v1 API, which will eventually be deprecated, as further Snyk developments are now focused on the REST API. For more details, see the [v1 API](../v1-api.md).
+This document uses the v1 API, which Snyk plans to deprecate, because Snyk now focuses development on the REST API. For more details, see the [v1 API](../v1-api.md).
{% endhint %}
Dependencies are packages or modules that your Projects depend on.
diff --git a/developer-tools/snyk-api/reference/entitlements-v1.md b/developer-tools/snyk-api/reference/entitlements-v1.md
index 5ecc16571747..ce1e84224824 100644
--- a/developer-tools/snyk-api/reference/entitlements-v1.md
+++ b/developer-tools/snyk-api/reference/entitlements-v1.md
@@ -1,7 +1,7 @@
# Entitlements (v1)
{% hint style="info" %}
-This document uses the v1 API, which will eventually be deprecated, as further Snyk developments are now focused on the REST API. For more details, see the [v1 API](../v1-api.md).
+This document uses the v1 API, which Snyk plans to deprecate, because Snyk now focuses development on the REST API. For more details, see the [v1 API](../v1-api.md).
{% endhint %}
{% openapi src="../../.gitbook/assets/v1-api-spec.yaml" path="/org/{orgId}/entitlements" method="get" %}
diff --git a/developer-tools/snyk-api/reference/import-projects-v1.md b/developer-tools/snyk-api/reference/import-projects-v1.md
index d817dc77eb52..3fa4343cbcae 100644
--- a/developer-tools/snyk-api/reference/import-projects-v1.md
+++ b/developer-tools/snyk-api/reference/import-projects-v1.md
@@ -4,7 +4,7 @@
This document uses the v1 API, which will eventually be deprecated, as further Snyk developments are now focused on the REST API. For more details, see the [v1 API](../v1-api.md).
{% endhint %}
-You can use this API to import projects into Snyk. Projects imported can be Git repositories, Docker images, containers, configuration files, and much more. See the [Projects and Targets documentation](https://docs.snyk.io/scan-fix-and-prevent/scan-with-snyk/snyk-projects#target) for more information. A typical import would start with requesting a target to be processed and then polling the Import Job API for more details on completion of an import and the resulting Snyk Projects.
+You can use this API to import Projects into Snyk. Imported Projects can be Git repositories, Docker images, containers, and configuration files. See the [Projects and Targets documentation](https://docs.snyk.io/scan-fix-and-prevent/scan-with-snyk/snyk-projects#target) for more information. A typical import starts by requesting a target to be processed, then polls the Import Job API for details about the completion of an import and the resulting Snyk Projects.
{% openapi src="../../.gitbook/assets/v1-api-spec.yaml" path="/org/{orgId}/integrations/{integrationId}/import" method="post" %}
[v1-api-spec.yaml](../../.gitbook/assets/v1-api-spec.yaml)
diff --git a/developer-tools/snyk-api/reference/licenses-v1.md b/developer-tools/snyk-api/reference/licenses-v1.md
index 465b0b9907ba..83b841883c1e 100644
--- a/developer-tools/snyk-api/reference/licenses-v1.md
+++ b/developer-tools/snyk-api/reference/licenses-v1.md
@@ -4,7 +4,7 @@
This document uses the v1 API, which will eventually be deprecated, as further Snyk developments are now focused on the REST API. For more details, see the [v1 API](../v1-api.md).
{% endhint %}
-**Note:** When you import or update Projects, changes will be reflected in the endpoint results after a one-hour delay.
+**Note:** When you import or update Projects, the endpoint results reflect the changes after a one-hour delay.
{% openapi src="../../.gitbook/assets/v1-api-spec.yaml" path="/org/{orgId}/licenses" method="post" %}
[v1-api-spec.yaml](../../.gitbook/assets/v1-api-spec.yaml)
diff --git a/developer-tools/snyk-api/reference/reporting-api-v1.md b/developer-tools/snyk-api/reference/reporting-api-v1.md
index cfe3d999bf2f..7c5b0c3897f2 100644
--- a/developer-tools/snyk-api/reference/reporting-api-v1.md
+++ b/developer-tools/snyk-api/reference/reporting-api-v1.md
@@ -9,7 +9,7 @@ The endpoints in this category support only Snyk legacy reporting, not the lates
{% endhint %}
Using the Reporting API, you can find answers to questions like how many issues your Organization has, or how many tests have been conducted in a given time period.
-The rate limit is up to **70 requests per minute, per user**. All requests above the limit will get a response with the status code `429 - Too many requests` until requests stop for the duration of the rate-limiting interval (one minute).
+The rate limit is up to **70 requests per minute, per user**. Requests above the limit receive a response with the status code `429 - Too many requests` until requests stop for the duration of the rate-limiting interval (one minute).
{% openapi src="../../.gitbook/assets/v1-api-spec.yaml" path="/reporting/issues" method="post" %}
[v1-api-spec.yaml](../../.gitbook/assets/v1-api-spec.yaml)
diff --git a/developer-tools/snyk-api/rest-api/about-the-rest-api.md b/developer-tools/snyk-api/rest-api/about-the-rest-api.md
index 6c333e1423d7..5ad5e358880c 100644
--- a/developer-tools/snyk-api/rest-api/about-the-rest-api.md
+++ b/developer-tools/snyk-api/rest-api/about-the-rest-api.md
@@ -16,13 +16,13 @@ This API is available only over HTTPS. Calling this API over HTTP will yield a 4
The Snyk REST API generally adheres to the [JSON:API standard](https://jsonapi.org/), with some [caveats](https://github.com/snyk/sweater-comb/blob/main/docs/principles/jsonapi.md). JSON:API is an opinionated specification for how a client should request and modify resources and how a server should respond to requests.
-When using the REST API, send all requests which contain data with the header:
+When using the REST API, send all requests that contain data with the header:
```
Content-Type: application/vnd.api+json
```
-Otherwise a 400 "Bad Request" response will be returned.
+Otherwise, Snyk returns a 400 "Bad Request" response.
```json
HTTP/1.1 400 Bad Request
@@ -42,9 +42,9 @@ HTTP/1.1 400 Bad Request
### Using versions dated on or after 2024-10-15
-The API Reference examples include `?version=text` as a placeholder, where `text` represents the required date-formatted version string. Snyk recommends using `2024-10-15` for the version number unless you are using an earlier version for a specific reason. You can use the current day's date; this will call the most recent version of the API. The format for the date is `YYYY-MM-DD`.
+The API Reference examples include `?version=text` as a placeholder, where `text` represents the required date-formatted version string. Snyk recommends using `2024-10-15` for the version number unless you are using an earlier version for a specific reason. You can use the current day's date to call the most recent version of the API. The format for the date is `YYYY-MM-DD`.
-### Using versions dated prior to 2024-10-15
+### Using versions dated before 2024-10-15
The following information applies to calling versions earlier than 2024-10-15. The Snyk REST API has per-endpoint version contracts. For information about the differences in GA versions, see the [API Changelog](../changelog.md). Each endpoint can have its own release and support lifecycle, independent of any other endpoint in the Snyk REST API. In its most explicit form, the endpoint version number includes a date and stability tree, for example:
@@ -54,9 +54,9 @@ The following information applies to calling versions earlier than 2024-10-15. T
This version number indicates that the requested endpoint should be at stability level `2023-11-27` or older `beta`. The possible stability levels are:
-* `ga` - Generally Available, the default. Snyk will support these for at least six months after the next GA release.
-* `beta` - Beta. Snyk will support these for at least three months after the next beta or GA release.
-* `experimental` - Experimental. An experimental endpoint should be considered unstable and regarded as a tech preview. Experimental versions may introduce breaking changes and may be discontinued at any time.
+* `ga` - Generally Available, the default. Snyk supports these for at least six months after the next GA release.
+* `beta` - Beta. Snyk supports these for at least three months after the next beta or GA release.
+* `experimental` - Experimental. Consider an experimental endpoint to be unstable and a tech preview. Experimental versions can introduce breaking changes and Snyk can discontinue them at any time.
In the default case of Generally Available, there is no stability level specified in the version number itself, that is, only the date is present, for example:
@@ -68,9 +68,9 @@ This means the requested endpoint should be 2023-11-27 or older on the Generally
When the requested endpoint is at a specific stability level, Snyk serves the latest version, the version released on or before the requested date, or that stability or higher. For example, if the requested endpoint has a beta version at 2023-09-29 and GA version at 2024-01-23, and the requested endpoint is after 2024-01-23\~beta, Snyk resolves to the GA version.
-Granular version controls enable Snyk to introduce progressive enhancements. These may require small or minor backward-incompatible changes. However, using granular version controls means Snyk can deliver rapid enhancements more quickly while supporting existing endpoints for a guaranteed period of time.
+Granular version controls let Snyk introduce progressive enhancements. These can require small or minor backward-incompatible changes. However, using granular version controls means Snyk can deliver rapid enhancements more quickly while supporting existing endpoints for a guaranteed period of time.
-After an endpoint is marked as deprecated, it will contain a `Sunset` header indicating the date at which that endpoint contract will no longer be supported. For example:
+After an endpoint is marked as deprecated, it contains a `Sunset` header indicating the date on which that endpoint contract is no longer supported. For example:
```
Sunset: "2021-11-11"
@@ -82,7 +82,7 @@ All endpoints in the Snyk REST API are paginated using _cursor-based_ pagination
To mitigate the possibility of inconsistent results, by default, Snyk sorts by insertion order, so it is not possible to have items inserted on a prior page. However, if you specify the `sort` parameter, consistent pagination is no longer guaranteed. If you see inconsistent results, you can submit a new request. If consistent pagination is important to your workflow, use the default insertion sort order.
-Whenever you receive an API response, it will contain appropriate links in the body of the response as follows:
+Whenever you receive an API response, it contains appropriate links in the body of the response as follows:
```json
{
@@ -121,6 +121,6 @@ Errors conform to the JSON:API specification and include path-based information
## Rate limiting
-There is a limit of **1620 requests per minute**, per API key. All requests above the limit will get a response with the status code `429` - `Too many requests` until requests stop for the duration of the rate-limiting interval (one minute).
+There is a limit of **1620 requests per minute**, per API key. All requests above the limit get a response with the status code `429` - `Too many requests` until requests stop for the duration of the rate-limiting interval (one minute).
-From time to time, Snyk may introduce new rate limits to maintain overall system health. This is not considered a breaking change. All clients are expected to handle the `429` responses correctly and such requests can be retried later safely.
+From time to time, Snyk can introduce new rate limits to maintain overall system health. This is not considered a breaking change. All clients are expected to handle the `429` responses correctly, and such requests can be retried later safely.
diff --git a/developer-tools/snyk-api/snyk-api.md b/developer-tools/snyk-api/snyk-api.md
index 27f61b91c0fc..5b9777d30ffc 100644
--- a/developer-tools/snyk-api/snyk-api.md
+++ b/developer-tools/snyk-api/snyk-api.md
@@ -6,22 +6,22 @@ The majority of Snyk APIs are restricted to use by Enterprise plan customers onl
For more information, see [Plans and pricing](https://snyk.io/plans).
{% endhint %}
-The Snyk API allows customers to integrate programmatically with Snyk.
+The Snyk API lets customers integrate programmatically with Snyk.
The [Snyk REST API ](rest-api/about-the-rest-api.md) and the [V1 API](v1-api.md) are available in the Snyk API [Reference](reference/). Additional endpoints are available in the [OAuth2 API reference](oauth2-api.md).
## Automating Snyk processes
-The Snyk API enables developers to automate Snyk processes to accomplish their specific workflows, ensuring consistency in both developer experience and platform governance.
+The Snyk API lets developers automate Snyk processes to accomplish their specific workflows, ensuring consistency in both developer experience and platform governance.
Use the API when you want to customize, integrate, and automate Snyk processes as part of your specific workflows.
## Deciding to use the API, the CLI, or an SCM integration
-You may decide to use an API rather than the CLI or an integration. When you decide, consider possible differences in the output for the API, the CLI, and integrations.
+You can decide to use an API rather than the CLI or an integration. When you decide, consider possible differences in the output for the API, the CLI, and integrations.
-For example, for many package managers, using the API will be less accurate than running the Snyk CLI as part of your build pipe or locally on your package. More than one version of a package may fit the requirements in manifest files.
+For example, for many package managers, using the API is less accurate than running the Snyk CLI as part of your build pipe or locally on your package. More than one version of a package can fit the requirements in manifest files.
Running the CLI locally tests the actual deployed code and creates an accurate snapshot of the dependency versions in use. The API infers a snapshot, with inferior accuracy. Note that the Snyk CLI can output machine-readable JSON (`snyk test --json`).
-You can allow Snyk access to your development flow by using Snyk integrations. The advantage is having Snyk monitor every new pull request and suggest fixes by opening new pull requests. You can integrate Snyk directly with your source code management (SCM) tool, or by using a Broker to allow greater security and auditability.
+You can allow Snyk access to your development flow by using Snyk integrations. The advantage is having Snyk monitor every new pull request and suggest fixes by opening new pull requests. You can integrate Snyk directly with your source code management (SCM) tool, or by using a Broker for greater security and auditability.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/export-api-specifications-columns-and-filters.md b/developer-tools/snyk-api/using-specific-snyk-apis/export-api-specifications-columns-and-filters.md
index e01110fd27e8..92321319d111 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/export-api-specifications-columns-and-filters.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/export-api-specifications-columns-and-filters.md
@@ -1,6 +1,6 @@
# Export API: Specifications, columns, and filters
-The Export API, which Snyk Analytics supports, makes it easier to export data by allowing users to create and manage CSV files. These files are safely stored by Snyk. Designed for efficiency and security, the Export API helps users organize and scale the export of large datasets, which is useful for reporting and analytics tasks.
+The Export API, which Snyk Analytics supports, makes it easier to export data by letting users create and manage CSV files. Snyk stores these files safely. Designed for efficiency and security, the Export API helps users organize and scale the export of large datasets, which is useful for reporting and analytics tasks.
You can use the Export API to export the Snyk `issues`, `usage events`, `pr checks`, `pr checks project adoption`, and `pr checks integration adoption` datasets in the scope of `Snyk Organization` or `Snyk Group`. Navigate to the [available columns and filters](export-api-specifications-columns-and-filters.md#available-columns-and-filters) section to see the full lists.
@@ -48,7 +48,7 @@ GET /groups/{group_id}/export/{export_id}
### Data freshness
-The data provided by the Export API service updates approximately every two hours. Given the data freshness, cyclic exports should not be scheduled more frequently than once every two hours.
+The data provided by the Export API service updates approximately every two hours. Given the data freshness, do not schedule cyclic exports more frequently than once every two hours.
### Rate limits
@@ -57,12 +57,12 @@ The API is limited by:
* The export `POST` endpoint allows up to 20 export requests per hour, while the status checks and results retrieval are unlimited.
{% hint style="info" %}
-Given that the data is typically refreshed every two hours, Snyk anticipates that the applied rate limits will allow comfortable consumption. Snyk recommends requesting an export per relevant Group once in a few hours or on a daily basis.
+Given that the data is typically refreshed every two hours, Snyk anticipates that the applied rate limits allow comfortable consumption. Snyk recommends requesting an export per relevant Group once in a few hours or on a daily basis.
{% endhint %}
### Data retention
-The exported CSV files will remain available for a period of three days.
+The exported CSV files remain available for a period of three days.
{% hint style="danger" %}
While the files are accessible for three days, the self-signed link to retrieve the export results is available only for 60 minutes after its creation by default. Users can limit the link expiration by passing a value between 0 and 3600 to the `url_expiration_seconds` attribute.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/issues-list-issues-for-a-package.md b/developer-tools/snyk-api/using-specific-snyk-apis/issues-list-issues-for-a-package.md
index baf32227c905..a0dc1b53c6c6 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/issues-list-issues-for-a-package.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/issues-list-issues-for-a-package.md
@@ -1,8 +1,8 @@
# Issues: List issues for a package
-The Snyk REST API endpoint [List issues for a package](../reference/issues.md#orgs-org_id-packages-purl-issues) can be used to get all direct (non-transitive) vulnerabilities for a package using its `purl`, which is a uniform way of identifying software packages across ecosystems as defined in the [package URL specification](https://github.com/package-url/purl-spec).
+Use the Snyk REST API endpoint [List issues for a package](../reference/issues.md#orgs-org_id-packages-purl-issues) to get all direct (non-transitive) vulnerabilities for a package using its `purl`, which is a uniform way of identifying software packages across ecosystems as defined in the [package URL specification](https://github.com/package-url/purl-spec).
-When you pass a `purl` to the endpoint, Snyk will find any known vulnerabilities for that package and return them as part of the response body.
+When you pass a `purl` to the endpoint, Snyk finds any known vulnerabilities for that package and returns them as part of the response body.
The API is useful when you have a list of packages and want to retrieve a list of vulnerabilities for a package version.
@@ -12,7 +12,7 @@ The examples on this page use [HTTPie](https://httpie.io/), but you can use any
## Supported purl types
-The current release supports the following `purl` types: `apk`, `cargo`, `cocoapods`, `conan`, `composer`, `deb`, `gem`, `generic`, `golang`, `hex`, `npm`, `nuget`, `pub`, `pypi`, `rpm`, `swift` and `maven`.
+The current release supports the following `purl` types: `apk`, `cargo`, `cocoapods`, `conan`, `composer`, `deb`, `gem`, `generic`, `golang`, `hex`, `npm`, `nuget`, `pub`, `pypi`, `rpm`, `swift`, and `maven`.
If you are interested in support for additional ecosystems, submit a request to [Snyk Support](https://support.snyk.io).
@@ -38,7 +38,7 @@ $ http \
version==2024-06-26
```
-For operating system packages, a vendor must be specified in the namespace portion, and a `distro` qualifier must be specified. Supported vendors include: `debian`, `alpine`, `rhel`, `ubuntu`, `amzn`, `centos`, `oracle`, `rocky`, `sles`.
+For operating system packages, you must specify a vendor in the namespace portion and a `distro` qualifier. Supported vendors include `debian`, `alpine`, `rhel`, `ubuntu`, `amzn`, `centos`, `oracle`, `rocky`, and `sles`.
An example using a valid url-encoded operating system purl follows:
@@ -240,7 +240,7 @@ Where applicable, **pagination links for the results** are included as follows:
## Troubleshooting for the List issues for a package endpoint
-The following are **error states** that you may receive when using the API. If you experience issues not covered here or are having trouble resolving these, contact your Solution Engineer or Technical Success Manager, or submit a request to [Snyk Support](https://support.snyk.io).
+The following are **error states** that you can receive when using the API. If you experience issues not covered here or are having trouble resolving these, contact your Solution Engineer or Technical Success Manager, or submit a request to [Snyk Support](https://support.snyk.io).
**Invalid PURL**\
400\
@@ -264,7 +264,7 @@ To get access, contact your Solutions Engineer or Technical Success Manager, or
**Rate limit exceeded**\
429\
-180 requests per minute per user are permitted on this API endpoint. If you exceed this volume, you will receive a 429 error response code.
+180 requests per minute per user are permitted on this API endpoint. If you exceed this volume, you receive a 429 error response code.
**Invalid pagination parameters**\
400\
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/README.md
index 8d945a0572e6..6723b158d06f 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/README.md
@@ -1,6 +1,6 @@
# SBOM APIs
-Information about how to use the following API endpoints is provided:
+This section describes how to use the following API endpoints:
* [Get a project’s SBOM document](rest-api-get-a-projects-sbom-document.md)
* [Test an SBOM document for vulnerabilities](rest-api-endpoint-test-an-sbom-document-for-vulnerabilities.md)
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-endpoint-test-an-sbom-document-for-vulnerabilities.md b/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-endpoint-test-an-sbom-document-for-vulnerabilities.md
index 658fbd6090c5..766f7bbce39a 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-endpoint-test-an-sbom-document-for-vulnerabilities.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-endpoint-test-an-sbom-document-for-vulnerabilities.md
@@ -5,7 +5,7 @@
The Snyk REST API is available only for Enterprise plans. For more information, see [Plans and pricing](https://snyk.io/plans).
-These endpoints are beta API versions. Some of the functionality may change. For more information, see the [Versioning](../../rest-api/about-the-rest-api.md#versioning) information for the REST API.
+These endpoints are beta API versions. Some of the functionality can change. For more information, see the [Versioning](../../rest-api/about-the-rest-api.md#versioning) information for the REST API.
{% endhint %}
Snyk offers a [collection of API endpoints](https://apidocs.snyk.io/?version=2024-09-03%7Ebeta#post-/orgs/-org_id-/sbom_tests) to asynchronously test a software bill of materials (SBOM) document. You can use these endpoints to learn more about the vulnerabilities impacting your SBOM and its packages.
@@ -89,7 +89,7 @@ curl --request POST \
You can check the status of the test at any time after the initial request.
1. Using the `job_id` returned from the initial request to the endpoint [Create an SBOM test run](https://apidocs.snyk.io/?version=2024-09-03%7Ebeta#post-/orgs/-org_id-/sbom_tests), make a request to the endpoint [Gets an SBOM test run status](https://apidocs.snyk.io/?version=2024-09-03%7Ebeta#get-/orgs/-org_id-/sbom_tests/-job_id-).
-2. A successful request to this endpoint returns the status of your test, which can either be `processing` or `finished`. If the call is not successful, an error will be returned.
+2. A successful request to this endpoint returns the status of your test, which can either be `processing` or `finished`. If the call is not successful, Snyk returns an error.
```bash
curl --get \
@@ -116,9 +116,9 @@ The following response code indicates success.
**201 Created**
-The SBOM test run was successfully created. The response body contains the job ID of the test run.
+Snyk successfully created the SBOM test run. The response body contains the job ID of the test run.
-The following are error states that you may receive when using the API. If you experience issues not covered here or are having trouble resolving these, contact your Solutions Engineer or Technical Success Manager, or submit a request to [Snyk Support](https://support.snyk.io).
+The following are error states that you can receive when using the API. If you experience issues not covered here or are having trouble resolving these, contact your Solutions Engineer or Technical Success Manager, or submit a request to [Snyk Support](https://support.snyk.io).
**400 Bad Request**
@@ -134,7 +134,7 @@ You do not have the permissions required to make the request. This can happen if
**429 Too Many Requests**
-Since the Snyk API is rate-limited, an excessive number of requests will eventually start to be rejected. You need to wait before making any further requests.
+Since the Snyk API is rate-limited, an excessive number of requests eventually starts to be rejected. You need to wait before making any further requests.
**500 Internal Server Error**
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-get-a-projects-sbom-document.md b/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-get-a-projects-sbom-document.md
index 9d5292434071..79c0fecd0b7d 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-get-a-projects-sbom-document.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/sbom-apis/rest-api-get-a-projects-sbom-document.md
@@ -9,7 +9,7 @@ Snyk offers the endpoint [Get a project's SBOM document](../../reference/sbom.md
The SBOM document represents the latest state of a Project’s dependencies and their relationships.
-SBOM documents can be generated in [CycloneDX](https://cyclonedx.org/) v1.4, v1.5, v1. 6 (JSON, XML) and [SPDX](https://spdx.dev/) v2.3 (JSON) formats.
+You can generate SBOM documents in [CycloneDX](https://cyclonedx.org/) v1.4, v1.5, v1.6 (JSON, XML) and [SPDX](https://spdx.dev/) v2.3 (JSON) formats.
## How to generate the SBOM for a Project
@@ -18,15 +18,15 @@ SBOM documents can be generated in [CycloneDX](https://cyclonedx.org/) v1.4, v1.
2. Determine the format you want for the SBOM you will generate.\
Available options are CycloneDX 1.4 JSON (`cyclonedx1.4+json`), CycloneDX 1.4 XML (`cyclonedx1.4+xml`), CycloneDX 1.5 JSON (`cyclonedx1.5+json`), CycloneDX 1.5 XML (`cyclonedx1.5+xml`), CycloneDX 1.6 JSON (`cyclonedx1.6+json`), CycloneDX 1.6 XML (`cyclonedx1.6+xml`) or SPDX v2.3 JSON (`spdx2.3+json`).
3. Using any HTTP client, for example, Postman or `curl`, make a request to the endpoint, specifying the latest stable version.\
- Note that the `format` parameter must be URL-encoded.\
- Example: To retrieve a CycloneDX 1.4 JSON document, set `format=cyclonedx1.4%2Bjson` on the query. Note that the example has a placeholder for the version; use version 2024-08-22 or later.
+ The `format` parameter must be URL-encoded.\
+ Example: To retrieve a CycloneDX 1.4 JSON document, set `format=cyclonedx1.4%2Bjson` on the query. The example has a placeholder for the version; use version 2024-08-22 or later.
`$ curl --location 'https://api.snyk.io/rest/orgs//projects//sbom?version=yyyy-mm-dd&format='`\
`--header 'Authorization: token '`
## Custom CycloneDX properties
-An SBOM document generated by Snyk will include some Snyk-specific metadata about what has been exported. This is included in the `metadata.properties` section of the document when exported as CycloneDX.
+An SBOM document generated by Snyk includes some Snyk-specific metadata about what has been exported. This is included in the `metadata.properties` section of the document when exported as CycloneDX.
Property Name
Description
snyk:org_id
The organization ID (UUID), if applicable
snyk:collection_id
The project collection’s ID (UUID), if applicable
snyk:project_id
The project’s ID (UUID), if applicable
snyk:target_id
The target’s ID (UUID), if applicable
@@ -36,9 +36,9 @@ The following response code indicates success.
**200 OK**
-The SBOM document was successfully generated. The response body contains the document in the requested format.
+Snyk successfully generated the SBOM document. The response body contains the document in the requested format.
-The following are **error states** that you may receive when using the API. If you experience issues not covered here or are having trouble resolving these, contact your Solution Engineer or Technical Success Manager or submit a request to [Snyk Support](https://support.snyk.io).
+The following are **error states** that you can receive when using the API. If you experience issues not covered here or are having trouble resolving these, contact your Solution Engineer or Technical Success Manager, or submit a request to [Snyk Support](https://support.snyk.io).
**401 Unauthorized**
@@ -50,7 +50,7 @@ You do not have the permissions required to make the request. This can happen if
**429 Too Many Requests**
-Since the Snyk API is rate-limited, an excessive number of requests will eventually start to be rejected. Wait before making any further requests.
+Since the Snyk API is rate-limited, an excessive number of requests eventually starts to be rejected. Wait before making any further requests.
**500 Internal Server Error**
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/README.md
index fc87549ab8a3..8addf0d49eda 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/README.md
@@ -1,6 +1,6 @@
# How to use Snyk Apps APIs
-This section provides an introduction to Snyk Apps and instructions for using the API and the CLI to create an App, for using the OAuth2 API to set up a Snyk App, and for using the API to manage Snyk Apps.
+This section introduces Snyk Apps and provides instructions for using the API and the CLI to create an App, using the OAuth2 API to set up a Snyk App, and using the API to manage Snyk Apps.
* [About Snyk Apps](about-snyk-apps.md)
* [Prerequisites for Snyk Apps](prerequisites-for-snyk-apps.md)
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/about-snyk-apps.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/about-snyk-apps.md
index f9ca4bce652c..2b1f98fce259 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/about-snyk-apps.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/about-snyk-apps.md
@@ -1,8 +1,8 @@
# About Snyk Apps
-Snyk Apps are integrations that extend the functionality of the Snyk platform, allowing you to create a Snyk experience to suit your specific needs.
+Snyk Apps are integrations that extend the functionality of the Snyk platform, letting you create a Snyk experience to suit your specific needs.
-For example, a Snyk App might automate Snyk [application security testing](https://snyk.io/learn/application-security/testing/) as part of a build tool. Another Snyk App might stream Snyk security testing results into an incident management tool. You can create your own reporting, metrics, or even a user management App. You can move your automated Snyk API scripts and transform them into a Snyk App, which will add a better UX/UI experience for your Snyk Organization users.
+For example, a Snyk App might automate Snyk [application security testing](https://snyk.io/learn/application-security/testing/) as part of a build tool. Another Snyk App might stream Snyk security testing results into an incident management tool. You can create your own reporting, metrics, or even a user management App. You can move your automated Snyk API scripts and transform them into a Snyk App, which adds a better UX/UI experience for your Snyk Organization users.
The easiest way to start building a new Snyk App is to clone the [Demo Snyk Apps ](https://github.com/snyk/snyk-apps-demo)GitHub repository. You can either modify the demo to suit your App design or use it as a base for creating your own Snyk App. See the [Snyk Apps blog post](https://snyk.io/blog/snyk-apps-beta-build-custom-apps-extend-snyk-security-into-workflows/) for more details.
@@ -12,17 +12,17 @@ Snyk Apps are based on the [Snyk API](../../snyk-api.md) so that your integratio
## Integrating Apps with Snyk
-The Snyk Apps platform uses an [OAuth 2.0](http://oauth.net/2/) authorization flow. This allows your Snyk App to get an access token to act on behalf of the user or Tenant, depending on the scopes you request. There are many OAuth 2.0 libraries available that will greatly simplify the integration. The [Snyk Apps Demo](https://github.com/snyk/snyk-apps-demo) uses the popular JavaScript library [passport.js](http://www.passportjs.org/packages/passport-oauth2/).
+The Snyk Apps platform uses an [OAuth 2.0](http://oauth.net/2/) authorization flow. This lets your Snyk App get an access token to act on behalf of the user or Tenant, depending on the scopes you request. There are many OAuth 2.0 libraries available that greatly simplify the integration. The [Snyk Apps Demo](https://github.com/snyk/snyk-apps-demo) uses the popular JavaScript library [passport.js](http://www.passportjs.org/packages/passport-oauth2/).
See the Snyk [OAuth2 API documentation](../../oauth2-api.md) for details.
## How do Apps connect?
-When a Snyk App is created, it is set up to use `a specific context`, either `tenant` or `user`. Set this with the `context` field if you are creating a Snyk App with the API or the `--context` flag if you are using the CLI. If the `context` is not specified, a Snyk App will default to the `tenant` context, which is preferred unless your Snyk App specifically needs to perform operations as an individual user.
+When you create a Snyk App, it is set up to use `a specific context`, either `tenant` or `user`. Set this with the `context` field if you are creating a Snyk App with the API or the `--context` flag if you are using the CLI. If you do not specify the `context`, a Snyk App defaults to the `tenant` context, which is preferred unless your Snyk App specifically needs to perform operations as an individual user.
### User context
-Authorizing a Snyk App that has the `user` context grants the Snyk App access to perform actions on behalf of the user. The Snyk App will have access to the same set of Organizations and Groups as the installing user, as well as access to any new Snyk Organizations and Groups the user is added to. If the installing user deactivates their account, any installed apps having the `user` context that user has installed will lose access to Snyk.
+Authorizing a Snyk App that has the `user` context grants the Snyk App access to perform actions on behalf of the user. The Snyk App has access to the same set of Organizations and Groups as the installing user, as well as access to any new Snyk Organizations and Groups the user is added to. If the installing user deactivates their account, any installed apps having the `user` context that user has installed lose access to Snyk.
### Tenant context
@@ -48,13 +48,13 @@ You can also navigate directly to the [Authorized Snyk Apps page](https://app.sn
### Revoking a Snyk App from the management UI
-On the Authorized Snyk Apps page, you will see a list of all the Snyk Apps that you have integrated and authorized. The page displays relevant information about each App, including the date when it was authorized.
+On the Authorized Snyk Apps page, you see a list of all the Snyk Apps that you have integrated and authorized. The page displays relevant information about each App, including the date when it was authorized.
-If you wish to revoke access for a particular Snyk App:
+To revoke access for a particular Snyk App:
* Locate the specific App in the list of authorized Apps.
-* Click the **Revoke** button next to the App.
+* Click **Revoke** next to the App.
-Revoking access will prevent the App from further accessing your Snyk account and performing actions on your behalf. This gives you full control over which Apps can interact with your Snyk data and ensures that you can manage your App integrations securely.
+Revoking access prevents the App from further accessing your Snyk account and performing actions on your behalf. This gives you full control over which Apps can interact with your Snyk data and ensures that you can manage your App integrations securely.
By using the Snyk Apps management UI, you can maintain a clear overview of your authorized Apps and make adjustments to their access as needed, enhancing the security and customization of your Snyk experience.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-api.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-api.md
index 7c2dffc48572..413bc2e8f15e 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-api.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-api.md
@@ -31,10 +31,10 @@ curl -L \
}'
```
-The request body should contain the details for your new App, including the `name`, `context`, `redirect_uris`, and [`scopes`](scopes-to-request.md).
+The request body must contain the details for your new App, including the `name`, `context`, `redirect_uris`, and [`scopes`](scopes-to-request.md).
The response includes details necessary to complete the integration: `client_id` and `client_secret`. Use these values with Snyk API endpoints within your App; consider storing them as part of the configuration of your App.
{% hint style="info" %}
-Never share the `client_secret` publicly, as it is used to authenticate your App. This is the only time you will see the `client_secret`, so keep it secure and private. If you lose it or if the secret is leaked, you can [rotate your App's clientSecret](manage-app-details.md#rotate-app-clientsecret).
+Never share the `client_secret` publicly, as it is used to authenticate your App. This is the only time you see the `client_secret`, so keep it secure and private. If you lose it or if the secret is leaked, you can [rotate your App's clientSecret](manage-app-details.md#rotate-app-clientsecret).
{% endhint %}
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-cli.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-cli.md
index 13a9d8d49d0a..e108a0d6da2b 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-cli.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/create-a-snyk-app-using-the-snyk-cli.md
@@ -48,11 +48,11 @@ A comma-separated list of scopes required by your Snyk App. This forms a list of
`--context=`
-The `context` your Snyk App will use when installed.
+The `context` your Snyk App uses when installed.
-Can be either `tenant` or `user`. The default is `tenant` if `context` is not specified.
+Can be either `tenant` or `user`. The default is `tenant` if you do not specify `context`.
-A Snyk App that has the `tenant` context will act as a bot user so it is not tied to any individual user and thus will persist even if the installing user leaves the Snyk Organization. In contrast, a Snyk App that has the `user` context will perform actions as the installing user. Specify the `user` context only if your Snyk App is performing operations that are specific to individual users. If there is any doubt, use `tenant`.
+A Snyk App that has the `tenant` context acts as a bot user, so it is not tied to any individual user and persists even if the installing user leaves the Snyk Organization. In contrast, a Snyk App that has the `user` context performs actions as the installing user. Specify the `user` context only if your Snyk App is performing operations that are specific to individual users. If there is any doubt, use `tenant`.
## Sub-commands of `snyk apps`
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/manage-app-details.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/manage-app-details.md
index da7296d6bef2..8254d1a1c5f7 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/manage-app-details.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/manage-app-details.md
@@ -30,7 +30,7 @@ The `app_id` path parameter is the `id` in the response to a [`GET` request to t
For details, see the endpoint [Delete an app by its App ID](../../reference/apps.md#orgs-org_id-apps-client_id-2).
-Deleting an App revokes your App credentials and removes all of your App's installations. If you have active users, they will no longer be able to connect to Snyk through the App.
+Deleting an App revokes your App credentials and removes all of your App's installations. If you have active users, they can no longer connect to Snyk through the App.
## Rotate App clientSecret
@@ -62,18 +62,18 @@ Snyk recommends you adopt the following procedure when rotating your secrets:
### Create a clientSecret
-It is recommended that in normal operation you periodically rotate your client secrets. To start the process, send the request body `{"mode": "create"}` to the endpoint which will create a new secret. The returned value of this call will be your app with the newly generated secret. Both the new secret and any existing secrets will be valid until they are manually replaced or deleted. You can also immediately replace a client secret.
+In normal operation, Snyk recommends that you periodically rotate your client secrets. To start the process, send the request body `{"mode": "create"}` to the endpoint, which creates a new secret. The returned value of this call is your app with the newly generated secret. Both the new secret and any existing secrets are valid until they are manually replaced or deleted. You can also immediately replace a client secret.
An App can have a maximum of two active secrets at any time. This endpoint fails with the error `cannot update secrets` if you try to call `create` when you already have the maximum number of secrets active.
### Replace a clientSecret
-In the event that your App's `clientSecret` is leaked, you can generate a new one by using `{"mode": "replace"}`.
+If your App's `clientSecret` is leaked, you can generate a new one by using `{"mode": "replace"}`.
-When you replace your `clientSecret`, your current secret is immediately invalid. Your App will not be able to connect to Snyk until you update the App's configuration with the new secret.
+When you replace your `clientSecret`, your current secret is immediately invalid. Your App cannot connect to Snyk until you update the App's configuration with the new secret.
### Delete a clientSecret
To clean up any unused secrets, call the endpoint with `{"mode": "delete", "secret": "{clientSecret}"}` where `{clientSecret}` is your client secret that you want to delete. This action invalidates the secret immediately so it can no longer be used.
-An App must have at least one active secret; calling delete with your last secret will fail.
+An App must have at least one active secret. Calling delete with your last secret fails.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/prerequisites-for-snyk-apps.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/prerequisites-for-snyk-apps.md
index 31508a91691c..e3a6364f5bc2 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/prerequisites-for-snyk-apps.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/prerequisites-for-snyk-apps.md
@@ -2,7 +2,7 @@
To create a Snyk App, you must have access to the Snyk API. To get started, follow the instructions to [authenticate for the API](../../authentication-for-api/).
-You must also retrieve the ID of the Snyk Organization you intend the App to be owned by (your `orgId`). You can get the Organization ID from the Organization settings in the Snyk Web UI or by using the [List accesible organizations](../../reference/orgs.md#get-orgs) endpoint (`https://api.snyk.io/rest/orgs` ) with the Snyk API token in the Authorization header.
+You must also retrieve the ID of the Snyk Organization you intend to own the App (your `orgId`). You can get the Organization ID from the Organization settings in the Snyk Web UI or by using the [List accessible organizations](../../reference/orgs.md#get-orgs) endpoint (`https://api.snyk.io/rest/orgs` ) with the Snyk API token in the Authorization header.
{% hint style="info" %}
Snyk Apps have first-class access to the API, regardless of whether users installing the App have paid for access or not. To take advantage of this feature, Apps must use API endpoints with the domain https://api.snyk.io/ rather than the deprecated `https://snyk.io/api/` to call the API within the App.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/scopes-to-request.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/scopes-to-request.md
index ca33acbcf0d4..c837b37be0f2 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/scopes-to-request.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/scopes-to-request.md
@@ -2,12 +2,12 @@
Scopes define the permissions your Snyk App has to perform actions in a user’s account. When a user authorizes your Snyk App to access their Snyk account, they see the list of scopes the App is requesting and then decide whether or not they approve the connection.
-When deciding which scopes your Snyk App will request, consider the actions your App will be performing. It may seem better to request every available scope, but users may refuse to install an App that asks for more permissions than needed. Also, a user installing your App will not be able to complete the authorization process if they do not have all the permissions matching the scopes the App is requesting.
+When deciding which scopes your Snyk App requests, consider the actions your App performs. It can seem better to request every available scope, but users can refuse to install an App that asks for more permissions than needed. Also, a user installing your App cannot complete the authorization process if they do not have all the permissions matching the scopes the App is requesting.
The following lists the **available scopes**.
{% hint style="info" %}
-`org.read` is a mandatory scope and should always be included.
+`org.read` is a mandatory scope and must always be included.
{% endhint %}
| Scope | Description |
@@ -26,7 +26,7 @@ The following lists the **available scopes**.
| `org.project.ignore.edit` | Configure Project ignores |
| `org.project.ignore.delete` | Permanently remove Project ignores |
| `org.project.attributes.edit` | Apply and remove project attributes |
-| `org.project.tag.edit` | Create, apply and remove Project tags |
+| `org.project.tag.edit` | Create, apply, and remove Project tags |
| `org.project.pr.create` | Create fix pull requests for Projects |
| `org.project.pr.skip` | Skip failed security tests on pull requests by marking checks as successful |
| `org.project.jira.issue.read` | View Jira issue information |
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/quick-setup.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/quick-setup.md
index 0f51bf73de17..521cf95a42d2 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/quick-setup.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/quick-setup.md
@@ -5,14 +5,14 @@ Snyk Apps uses the Authorization code with the Proof Key for Code Exchange (PKCE
* Authorization: `/oauth2/authorize`
* Token: `/oauth2/token`
-The Snyk Apps authorization flow should work with any popular OAuth2-compatible client library, providing it supports PKCE.
+The Snyk Apps authorization flow works with any popular OAuth2-compatible client library, providing it supports PKCE.
The basic steps to set up a Snyk App using the OAuth2 API follow:
1. Generate a code verifier and code challenge.
2. Request the authorization code by directing the installing user to `/oauth2/authorize` with the generated code challenge, as well as all other required OAuth2 parameters.
3. The user is asked to approve the request, selecting the Organization or Group to which the Snyk App is being installed.
-4. The user is returned to the redirect URI defined by the Snyk App with an authorization code. You have to extract the authorization code from the user request
+4. The user is returned to the redirect URI defined by the Snyk App with an authorization code. You must extract the authorization code from the user request.
5. Exchange the authorization code for an access token and refresh the token pair, using the code verifier generated in the first step.
The following pages go into more detail about each step.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/retrieve-the-app-org-ids.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/retrieve-the-app-org-ids.md
index d0be440c6b7d..bb63b7e815d4 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/retrieve-the-app-org-ids.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/retrieve-the-app-org-ids.md
@@ -1,6 +1,6 @@
# Retrieve the App Org IDs
-Users may connect with a single Organization or a single Group. Most of the Snyk API endpoints require an `orgid` in the path, which is used for authorizing the action being performed.
+Users can connect with a single Organization or a single Group. Most of the Snyk API endpoints require an `orgid` in the path, which is used for authorizing the action being performed.
To retrieve the `orgid` that is used by your App, send a GET request to the `orgs` endpoint, [List accessible organizations](../../../reference/orgs.md#get-orgs) at the following URL:
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/revoke-compromised-refresh-tokens.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/revoke-compromised-refresh-tokens.md
index f70b7b326053..89fa92bd178c 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/revoke-compromised-refresh-tokens.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/revoke-compromised-refresh-tokens.md
@@ -1,8 +1,8 @@
# Revoke compromised refresh tokens
-If you believe that a refresh token has been compromised then it is recommended that you revoke that token as soon as possible. This is to prevent misuse of the token to gain access to Snyk systems.
+If you believe that a refresh token has been compromised, Snyk recommends that you revoke that token as soon as possible. This prevents misuse of the token to gain access to Snyk systems.
-To do this issue a POST request to the revoke endpoint:
+To do this, issue a POST request to the revoke endpoint:
```
https://api.snyk.io/oauth2/revoke
@@ -16,4 +16,4 @@ token=(refresh token to be revoked)
&client_secret=(clientSecret from the app creation)
```
-This endpoint will return an empty response on success and the given refresh token will immediately be revoked.
+This endpoint returns an empty response on success, and the given refresh token is immediately revoked.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-authorization-code-exchange.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-authorization-code-exchange.md
index a0b4b1d3a8b1..d7f546babfd5 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-authorization-code-exchange.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-authorization-code-exchange.md
@@ -21,8 +21,8 @@ grant_type=authorization_code
The response includes details necessary for your app to communicate with the Snyk APIs: `access_token` and `refresh_token`, as well as their expiry.
-Both tokens must be stored in a secured data store. It is highly recommended to encrypt the values before storing them.
+Both tokens must be stored in a secured data store. Snyk highly recommends that you encrypt the values before storing them.
-The `access_token` will be used for future API calls on behalf of the user and Organization. The access-token has a much shorter lifespan than the `refresh_token`.
+The `access_token` is used for future API calls on behalf of the user and Organization. The access-token has a much shorter lifespan than the `refresh_token`.
-The `refresh_token` can be used a single time to get a new `access_token` when it expires. In other words, the `refresh_token` will no longer be usable if its own expiry time passes or if it is used to refresh the `access_token`.
+The `refresh_token` can be used a single time to get a new `access_token` when it expires. In other words, the `refresh_token` is no longer usable if its own expiry time passes or if it is used to refresh the `access_token`.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-refresh-token-exchange.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-refresh-token-exchange.md
index 2583c5e85725..4944eed185f0 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-refresh-token-exchange.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-the-refresh-token-exchange.md
@@ -1,6 +1,6 @@
# Set up the refresh token exchange
-As the `access_token` will expire in a short time, the App will need to frequently request a new one using the `refresh_token`. This must be done while the `refresh_token` itself is still valid.
+As the `access_token` expires in a short time, the App needs to frequently request a new one using the `refresh_token`. This must be done while the `refresh_token` itself is still valid.
To exchange for a fresh `access_token`, make a POST request to the token endpoint:
@@ -19,4 +19,4 @@ grant_type=refresh_token
The response to this call provides a new `access_token`, `refresh_token`, and expiry for each.
-Be sure to store the new `refresh_token`, as the old one is now invalid. Be aware that concurrent calls to this endpoint may result in refresh tokens being marked invalid unexpectedly, make sure to only request a new refresh token pair once per given refresh token. If this process fails then a user will need to perform the authorization flow again.
+Be sure to store the new `refresh_token`, as the old one is now invalid. Be aware that concurrent calls to this endpoint can result in refresh tokens being marked invalid unexpectedly. Request a new refresh token pair only once per given refresh token. If this process fails, a user needs to perform the authorization flow again.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-to-authorize-users.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-to-authorize-users.md
index d529e7d75a5a..5003cb112c0e 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-to-authorize-users.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/set-up-a-snyk-app-using-the-oauth2-api/set-up-to-authorize-users.md
@@ -2,11 +2,11 @@
When users connect their Snyk account to your App, they must authorize access to their chosen Organization or Group and approve the requested scopes. This process starts when you direct users to the Snyk Apps authorization web page and pass the appropriate parameters: `https://app.snyk.io/oauth2/authorize?response_type=code&client_id={clientId}&redirect_uri={redirectURI}&state={state}&code_challenge={codeChallenge}&code_challenge_method=S256`
-If your Snyk App is configured with multiple redirect URIs, passing `redirect_uri` will select which redirect URI to use. The given value must match exactly one of the values that are defined for your Snyk App. If not specified the first value defined on the Snyk App is used.
+If your Snyk App is configured with multiple redirect URIs, passing `redirect_uri` selects which redirect URI to use. The given value must match exactly one of the values that are defined for your Snyk App. If you do not specify it, the first value defined on the Snyk App is used.
The `state` value is used to carry any App-specific state from this `/authorize` call to the callback on the `redirect_uri` (such as a user’s id). It must be verified in your callback to [prevent CSRF attacks](https://datatracker.ietf.org/doc/html/rfc6749#section-10.12).
-The `code_challenge` value is a URL-safe base64-encoded string of the SHA256 hash of a generated code verifier. This code verifier must be a highly randomised string generated on the app side before calling `/authorize`, the code verifier is sent when exchanging the returned authorization code for an access token. For more information see [Proof Key for Code Exchange by OAuth Public Clients](https://datatracker.ietf.org/doc/html/rfc7636). Note that Snyk Apps only supports `S256` for the code challenge method.
+The `code_challenge` value is a URL-safe base64-encoded string of the SHA256 hash of a generated code verifier. This code verifier must be a highly randomized string generated on the app side before calling `/authorize`. The code verifier is sent when exchanging the returned authorization code for an access token. For more information, see [Proof Key for Code Exchange by OAuth Public Clients](https://datatracker.ietf.org/doc/html/rfc7636). Snyk Apps support only `S256` for the code challenge method.
Authorize access to Organization
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/README.md
index e4c4bed06862..0630cb704d06 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/README.md
@@ -1,10 +1,10 @@
# Tutorial: create a Snyk App
-In this tutorial, we'll create a simple Snyk App using TypeScript to show users a list of their projects within Snyk.
+In this tutorial, we'll create a Snyk App using TypeScript to show users a list of their Projects in Snyk.
## Prerequisites
-* NodeJS
+* Node.js
* A Snyk account
## Configure the basics
@@ -19,7 +19,7 @@ Now that we have a place to save dependency information, use `npm` to install Ty
npm install typescript --save-dev
```
-At this point, TypeScript has been installed, but we'll need a configuration file to provide compilation options to the `tsc` binary. Create a TypeScript configuration file called `tsconfig.json` in the root of the project. Use the template that follows:
+At this point, TypeScript is installed, but we'll need a configuration file to provide compilation options to the `tsc` binary. Create a TypeScript configuration file called `tsconfig.json` in the root of the project. Use the template that follows:
```json
{
@@ -53,7 +53,7 @@ mkdir ./src
## Test it out
-Now that we have the basic parameters in place, we'll create a simple Hello World by creating the file `./src/index.ts`.
+Now that we have the basic parameters in place, we'll create a Hello World by creating the file `./src/index.ts`.
```
const world = 'world';
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/configuring-express.js.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/configuring-express.js.md
index 80b70f613706..fecab26ce83e 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/configuring-express.js.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/configuring-express.js.md
@@ -2,7 +2,7 @@
## Set up Express to serve the application
-So far, we've configured our project directories, set the TypeScript compiler options, and created a very simple TypeScript application to print out `Hello World`.
+So far, we've configured our project directories, set the TypeScript compiler options, and created a TypeScript application to print out `Hello World`.
In this section, we'll expand our application by adding `ExpressJS` to serve our application and configure middleware to handle different kinds of requests.
@@ -32,7 +32,7 @@ npm install --save-dev \
> This tutorial makes use of Object-oriented programming (OOP) concepts. If you aren't familiar with OOP, refer to [this MDN page](https://developer.mozilla.org/en-US/docs/Learn/JavaScript/Objects/Object-oriented\_JS) for a brief primer.
-To begin, create a new file to house the application code we'll be working on in this portion of the tutorial. If you've just come from the previous module where we configured a simple 'Hello world' app, you can leave your `index.ts` file alone; we'll come back to it.
+To begin, create a new file to house the application code we'll be working on in this portion of the tutorial. If you have come from the previous module where we configured a 'Hello world' app, you can leave your `index.ts` file alone. We'll come back to it.
```bash
touch ./src/app.ts
@@ -40,9 +40,9 @@ touch ./src/app.ts
Add an import statement for Express and its TypeScript type / interface definitions at the top of the new file (`./src/app.ts`), then create an `App` class to house all the related functions and configuration required to run our application.
-The class constructor will initialize Express on port 3000 when the class is instantiated. We'll create a private function `listen()` for the constructor to call which will handle the actual start of the Express server.
+The class constructor initializes Express on port 3000 when the class is instantiated. We'll create a private function `listen()` for the constructor to call, which handles the start of the Express server.
-Don't forget to export the class at the bottom, we'll need it later.
+Remember to export the class at the bottom. We'll need it later.
```typescript
import express from 'express';
@@ -71,15 +71,15 @@ class App {
export default App;
```
-Test the new file using `npx tsc` and ensure an `app.js` file is successfully created in the `./dist` directory. If there are no errors, great! You're ready to start adding routes.
+Test the new file using `npx tsc` and ensure an `app.js` file is created in the `./dist` directory. If there are no errors, you're ready to start adding routes.
## Basic routes
Express will listen to any request on our given port, but it doesn't know _what to do_ when it receives a request. We need to tell Express _how_ to handle the various types of requests it might receive. How you configure this depends heavily on the architecture of your application, and which routes / pages you expect your app to respond to when hit.
-For this tutorial, we'll keep things simple. Since our end goal is to provide users with a list of their projects within Snyk, assume we'll want at least two routes: an index route (`/`) to handle any initial connections and a projects route (`/projects`) to present the data from Snyk.
+For this tutorial, we'll keep things simple. Since our end goal is to provide users with a list of their Projects in Snyk, assume we'll want at least two routes: an index route (`/`) to handle any initial connections and a projects route (`/projects`) to present the data from Snyk.
-To keep our project organized, we'll create a `routes` directory to house our collection of routes and we'll give each route its own subdirectory which will contain the main controller file for the route and any extras we might need.
+To keep our project organized, we'll create a `routes` directory to house our collection of routes, and we'll give each route its own subdirectory that contains the main controller file for the route and any extras we need.
We'll focus on the index route for this module:
@@ -88,9 +88,9 @@ mkdir -p ./src/routes/index
touch ./src/routes/index/indexController.ts
```
-Before we start working on the index controller, we should also create a [TypeScript interface](https://www.typescriptlang.org/docs/handbook/interfaces.html) definition to describe a common shape for controller data. This will help keep our controllers consistent and allow TypeScript to warn us early if a controller is missing something important.
+Before we start working on the index controller, we should also create a [TypeScript interface](https://www.typescriptlang.org/docs/handbook/interfaces.html) definition to describe a common shape for controller data. This keeps our controllers consistent and lets TypeScript warn us early if a controller is missing something important.
-Let's use a similar separation pattern to the one we decided on for routes. Since interface definitions in TypeScript are typically self-contained and descriptive, we'll skip creating a directory for each definition and store any interface files we create as siblings:
+Let's use a separation pattern similar to the one we decided on for routes. Since interface definitions in TypeScript are typically self-contained and descriptive, we'll skip creating a directory for each definition and store any interface files we create as siblings:
```bash
mkdir -p ./src/interfaces
@@ -139,7 +139,7 @@ Here we've imported a handful of TypeScript type/interface definitions as well a
We've set our `IndexController` to respond to `/` requests with the `indexPage` function, which renders 'index', but our App class doesn't yet have a way to register the route when it instantiates. Let's go back to our `./src/app.ts` file and add an `initRoutes()` function to establish that.
-We'll also modify the App's constructor function to take an array of Controllers and a port value as arguments.
+We'll also modify the constructor function for the App to take an array of Controllers and a port value as arguments.
Edit `./src/app.ts` and update the contents to match the following:
@@ -180,15 +180,15 @@ export default App;
## Running the Express server
-So far, we've created an App class that, when instantiated, will run an Express server that responds to requests at `/` and we've added an interface definition to ensure all our controllers follow the same data pattern.
+So far, we've created an App class that, when instantiated, runs an Express server that responds to requests at `/`, and we've added an interface definition to ensure all our controllers follow the same data pattern.
-Let's run our project and try it out!
+Let's run our project and try it out.
-If you run the compiled `./dist/app.js` at this point, nothing interesting happens. This is because we've yet to instantiate our exported class. In the previous module, we initialized our `package.json`. During that command, we were presented with questions pertaining to our app. One of the questions asked what our project's entrypoint was. If you were following along and selected the default value, this should be set to `index.js` in your `package.json`. This entrypoint is where we'll instantiate the App class.
+If you run the compiled `./dist/app.js` at this point, nothing interesting happens. This is because we've yet to instantiate our exported class. In the previous module, we initialized our `package.json`. During that command, questions about our app appeared. One of the questions asked what our project's entrypoint was. If you were following along and selected the default value, this should be set to `index.js` in your `package.json`. This entrypoint is where we'll instantiate the App class.
Edit `./src/index.ts` (where we had that hello world code) and clear it out if there's any content left over, then add import statements for our App and other required objects.
-Our entrypoint will only do one thing, instantiate the App class with the `new` keyword:
+Our entrypoint does only one thing, instantiate the App class with the `new` keyword:
```typescript
import IndexController from './routes/indexController';
@@ -202,16 +202,14 @@ new App(
);
```
-That's it!
-
-Build the project using `npx tsc` then run the compiled entrypoint with `node`:
+Build the project using `npx tsc`, then run the compiled entrypoint with `node`:
```bash
npx tsc && node ./dist/index.js
```
-Provided everything was successful, you'll see the message `App listening on port: 3000` in the console.
+When everything is successful, you'll see the message `App listening on port: 3000` in the console.
-Now visit http://localhost:3000 in your browser or use curl to check the response. If you see `index route!`, then congratulations! Express is serving the application and responding to routes!
+Now visit http://localhost:3000 in your browser or use curl to check the response. If you see `index route!`, Express is serving the application and responding to routes.
-In the next module of this tutorial, we'll dive deeper into routes and authentication and start working with the Snyk API.
+In the next module of this tutorial, we'll go deeper into routes and authentication and start working with the Snyk API.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/register-the-app-and-configure-user-authorization.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/register-the-app-and-configure-user-authorization.md
index 33a7f2fe9d3a..b3dcf363238b 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/register-the-app-and-configure-user-authorization.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/register-the-app-and-configure-user-authorization.md
@@ -1,10 +1,10 @@
# Register the App and configure user authorization
-In the previous sections of this tutorial, we set up our TypeScript project, added an Express server, and configured some basic routing. We'll be building on top of the project we created in the previous sections. It is highly recommended that you complete the previous portions of this tutorial before continuing if you have not done so already.
+In the previous sections of this tutorial, we set up our TypeScript project, added an Express server, and configured some basic routing. We'll be building on top of the project we created in the previous sections. Snyk recommends that you complete the previous portions of this tutorial before continuing if you have not done so already.
## Creating and registering a Snyk App
-We've made some good progress with our TypeScript application so far, but at the moment, that's all it is - a TypeScript application. To turn it into a bonafide Snyk App, we'll need to register our project as a new App using Snyk's API
+We've made good progress with our TypeScript application so far, but at the moment, that's all it is - a TypeScript application. To turn it into a bonafide Snyk App, we'll need to register our project as a new App using the Snyk API.
### Prerequisites
@@ -14,7 +14,7 @@ We've made some good progress with our TypeScript application so far, but at the
### Obtaining an `orgid`
-There are two methods for retrieving an `orgid`. The first is to log in to your Snyk account and visit the Organization settings page of the Organization for which you wish to retrieve the ID. The path to the Organization settings page is:
+There are two methods for retrieving an `orgid`. The first is to log in to your Snyk account and visit the Organization settings page of the Organization for which you want to retrieve the ID. The path to the Organization settings page is:
```
https://app.snyk.io/org/{your-org-name}/manage/settings
@@ -28,21 +28,21 @@ Snyk Apps have first-class access to the API, regardless of whether users instal
### Registering our app with Snyk
-Registration of a new Snyk App is performed through a simple POST request to Snyk's API. While we could configure the App we've been building throughout this tutorial to perform the request, we'll instead make the request directly using `curl` to avoid creating a function that can only be run a single time.
+You register a new Snyk App through a POST request to the Snyk API. While we could configure the App we've been building throughout this tutorial to perform the request, we'll instead make the request directly using `curl` to avoid creating a function that can only be run a single time.
The body of the request requires the following details:
* `name`: The name of the Snyk App
-* `redirectUris`: The accepted callback location(s) during end-user authentication
-* `scopes`: The account permissions the Snyk App will ask a user to grant
+* `redirectUris`: The accepted callback locations during end-user authentication
+* `scopes`: The account permissions the Snyk App asks a user to grant
-A note on scopes: Once registered, Snyk Apps scopes cannot currently be changed. The only recourse is deleting the Snyk App using the [Delete App](../../../reference/apps.md#orgs-org_id-apps-creations-app_id-2) API endpoint and registering the app again as a new Snyk App.
+A note on scopes: after registration, Snyk Apps scopes cannot be changed. The only recourse is deleting the Snyk App using the [Delete App](../../../reference/apps.md#orgs-org_id-apps-creations-app_id-2) API endpoint and registering the app again as a new Snyk App.
-At the time of this writing, **Snyk Apps is still in beta**. At the moment, t**here is only one available scope: `apps:beta`**. This scope **allows** the App to test and monitor existing projects, as well as read information about Snyk Organizations, existing Projects, issues, and reports.
+At the time of this writing, **Snyk Apps is still in beta**. There is only one available scope: **`apps:beta`**. This scope **lets** the App test and monitor existing Projects, as well as read information about Snyk Organizations, existing Projects, issues, and reports.
-One of the **limitations of the Snyk Apps beta** is that **a Snyk App may be authorized only by users who have administrator access to the Organization to which the Snyk App is registered**.
+One of the **limitations of the Snyk Apps beta** is that **only users who have administrator access to the Organization to which the Snyk App is registered can authorize a Snyk App**.
-With your API token and `orgid` in hand, perform the following command in your terminal, substituting the values as necessary. For this tutorial, use `http://localhost:3000/callback` for the `redirectUris` value.
+With your API token and `orgid` in hand, run the following command in your terminal, substituting the values as necessary. For this tutorial, use `http://localhost:3000/callback` for the `redirectUris` value.
{% hint style="info" %}
You can avoid inputting your API Token and other secrets directly into your shell by adding them as export statements in a file and sourcing the file to set them as environment variables.
@@ -63,13 +63,13 @@ curl --include \
The response from Snyk contains two important values needed to complete our Snyk App's integration: `clientId` and `clientSecret`. Store these values somewhere safe. This is the only time you will see your `clientSecret` from Snyk. As a warning, **never share your `clientSecret` publicly**. This is used to authenticate your App with Snyk.
-Now that we've registered the app as a Snyk App, we can start adjusting our TypeScript project to allow users to authorize it.
+Now that we've registered the app as a Snyk App, we can start adjusting our TypeScript project to let users authorize it.
## User authorization with a Snyk App
-User authentication for Snyk Apps is done by way of a webpage URL containing query parameters that match up with our Snyk App's data. We'll need to replace the query parameter values in this URL and send users to the final link in a web browser. From there they can grant account access to the Snyk App.
+User authentication for Snyk Apps works by way of a webpage URL containing query parameters that match up with the data for our Snyk App. We'll need to replace the query parameter values in this URL and send users to the final link in a web browser. From there they can grant account access to the Snyk App.
-After access has been provisioned, the user will be kicked back to our app's registered `callbackURL`, which we defined as `http://localhost:3000/callback`.
+After access is provisioned, the user returns to our app's registered `callbackURL`, which we defined as `http://localhost:3000/callback`.
Essentially, our app needs to generate a link like the following and then send the user to it when it's time to authorize:
@@ -77,13 +77,13 @@ Essentially, our app needs to generate a link like the following and then send t
https://app.snyk.io/oauth2/authorize?response_type=code&client_id={clientId}&redirect_uri={redirectURI}&state={state}&code_challenge={codeChallenge}&code_challenge_method=S256
```
-Though some of the query parameters may be somewhat obvious, we will go over them. We're going to modify our Snyk App to generate this URL for our users.
+Though some of the query parameters may be obvious, we will go over them. We're going to modify our Snyk App to generate this URL for our users.
-* `redirect_uri`: Optional values must match one of the values sent with our registration command from [Registering our app with Snyk](register-the-app-and-configure-user-authorization.md#registering-our-app-with-snyk). If not passed then the first value on the Snyk App is assumed.
-* `state`: This is used to carry any App-specific state from this `/authorize` call to the callback on the `redirect_uri` (such as a user's ID). It must be verified in our callback to [prevent CSRF attacks](https://datatracker.ietf.org/doc/html/rfc6749#section-10.12).
+* `redirect_uri`: Optional values must match one of the values sent with our registration command from [Registering our app with Snyk](register-the-app-and-configure-user-authorization.md#registering-our-app-with-snyk). If not passed, the first value on the Snyk App is assumed.
+* `state`: This carries any App-specific state from this `/authorize` call to the callback on the `redirect_uri` (such as a user's ID). You must verify it in our callback to [prevent CSRF attacks](https://datatracker.ietf.org/doc/html/rfc6749#section-10.12).
* `code_challenge`: A URL-safe base64-encodes string of the SHA256 hash of a code verifier. The code verifier is a highly randomized string stored alongside the app side before calling `/authorize`, then sent when exchanging the returned authorization code for a token pair. This is part of Proof Key for Code Exchange (PKCE) which helps prevent authorization code interception attacks.
-Once a connection is complete, the user is redirected to the provided redirect URI (our `/callback` route in this case) with query string parameters `code` and `state` added on, which are necessary for the next steps of authorization.
+After a connection is complete, the user is redirected to the provided redirect URI (our `/callback` route in this case) with query string parameters `code` and `state` added on, which are necessary for the next steps of authorization.
That next step involves taking the authorization code received as a query parameter in the response of the previous step and turning it into an _access token_. To do this, a Snyk App makes a POST request to the token endpoint: `https://api.snyk.io/oauth2/token`. That POST request needs some specific data in its request body, including the _authorization code_, `client id`, `client secret`, `code_verifier` and so on.
@@ -106,9 +106,9 @@ Based on the preceding information, our Snyk App has some new requirements. We w
5. Refresh those authorization tokens.
6. Handle errors and inform users of authorization success or failure.
-From here on, we'll be doing a lot of refactoring in our Snyk App and we'll be jumping into a number of different files. To help make the process easier to follow, this tutorial uses the convention of adding a commented filepath to the first line of code snippets, describing where they belong. In your own code; these comments aren't necessary.
+From here on, we'll be doing a lot of refactoring in our Snyk App and we'll be jumping into a number of different files. To help make the process easier to follow, this tutorial uses the convention of adding a commented filepath to the first line of code snippets, describing where they belong. In your own code, these comments aren't necessary.
-We'll also add a number of new packages to help address our new requirements. For convenience, go ahead and run the following in the root of your Project:
+We'll also add a number of new packages to help address our new requirements. For convenience, run the following in the root of your Project:
```bash
npm install --save passport \
@@ -138,7 +138,7 @@ npm install --save-dev @types/cryptr \
#### Application configuration
-Application config (for example, client secrets, api tokens, other config, and so on) should generally be stored securely and kept outside of the App itself. However, for brevity, this tutorial adds the configuration info as exportable constants in the `App.ts` file and leaves the actual implementation details to you. These are values that the Snyk App references in many different places.
+Application config (for example, client secrets, api tokens, and other config) should generally be stored securely and kept outside of the App itself. However, for brevity, this tutorial adds the configuration info as exportable constants in the `App.ts` file and leaves the implementation details to you. These are values that the Snyk App references in many different places.
```typescript
// ./src/app.ts
@@ -294,11 +294,11 @@ export async function updateDb(
### Prepare for API calls
-Earlier, we installed the popular `axios` package to handle API calls. We know that we'll need to make some repetitive calls to the same API, so we abstract some helper functions to make our code easily re-usable across the project. Create an `APIHelpers.ts` file in the `util` directory.
+Earlier, we installed the popular `axios` package to handle API calls. We know that we'll need to make some repetitive calls to the same API, so we abstract some helper functions to make our code reusable across the project. Create an `APIHelpers.ts` file in the `util` directory.
-Before we fill that out, take note that while we are consistently hitting Snyk's API, we'll likely need to make requests against multiple versions of the API, depending on the endpoint's status in the migration from Snyk API v1 to Snyk REST API. One way we can handle this is by defining a TypeScript Enum and within our functions, swapping any necessary query parameters by comparing an argument to the enum's possible values.
+Before we fill that out, take note that while we are consistently hitting the Snyk API, we'll likely need to make requests against multiple versions of the API, depending on the endpoint's status in the migration from Snyk API v1 to Snyk REST API. One way we can handle this is by defining a TypeScript Enum and, within our functions, swapping any necessary query parameters by comparing an argument to the enum's possible values.
-Add the following content to a new file, or to `APIHelpers.ts` if you prefer; just make sure to export it for later use.
+Add the following content to a new file, or to `APIHelpers.ts` if you prefer. Make sure to export it for later use.
```typescript
// ./interfaces/API.ts
@@ -333,7 +333,7 @@ export function callSnykApi(tokenType: string, token: string, version: APIVersio
}
```
-Because this function is an `AxiosInstance`, we can easily talk to the API's different endpoints by calling `.get()`, `.post()`, or any other methods usually available to such an object.
+Because this function is an `AxiosInstance`, we can talk to the API's different endpoints by calling `.get()`, `.post()`, or any other methods usually available to such an object.
We will see it in action by defining a second async function to retrieve our Snyk Apps' Organization ID:
@@ -407,7 +407,7 @@ export class EncryptDecrypt {
We've laid the groundwork; now it's time to start doing things.
-As discussed in a previous section, our app needs to send would-be authorizers to a specific token URL. We'll add an `/auth` route in our Snyk App and add some authentication middleware to Express. For this, we'll use the excellent [passportjs](https://www.passportjs.org), the [passport-oauth2](https://www.passportjs.org/packages/passport-oauth2/) authentication strategy, along with Snyk's [@snyk/passport-snyk-oauth2](https://www.npmjs.com/package/@snyk/passport-snyk-oauth2). `passport` and its friends handle a large portion of what would otherwise be a lengthy and complicated authentication process.
+As discussed in a previous section, our app needs to send would-be authorizers to a specific token URL. We'll add an `/auth` route in our Snyk App and add some authentication middleware to Express. For this, we'll use [passportjs](https://www.passportjs.org), the [passport-oauth2](https://www.passportjs.org/packages/passport-oauth2/) authentication strategy, along with the Snyk package [@snyk/passport-snyk-oauth2](https://www.npmjs.com/package/@snyk/passport-snyk-oauth2). `passport` and its friends handle a large portion of what would otherwise be a lengthy and complicated authentication process.
Because `passport` takes its encapsulation philosophy seriously, we'll need to handle everything else about the auth process. We need to set up an instance of the passport strategy we'll be using. We'll put our database helpers from earlier to use here as well, adding an entry into our database when we receive successful authorization.
@@ -571,7 +571,7 @@ touch ./src/routes/callback/callbackController.ts
The `AuthController` handles authentication of the App via the previously described authorization flow. This is the third step of `passport` setup. Every controller class implements the controller interface which has two members: the path and the router.
-This controller handles the `/auth` route, which is what we'll use to send users (via `passport`) to the Snyk website for authorization approval.
+This controller handles the `/auth` route, which is what we'll use to send users (through `passport`) to the Snyk website for authorization approval.
```typescript
// ./src/routes/auth/authController.ts
@@ -602,7 +602,7 @@ class AuthController implements Controller {
export default AuthController;
```
-Once a user approves authorization to our Snyk App via the Snyk website, the user is kicked back to our callback URI, `/callback`. We'll handle this route similarly, invoking passport again. This is the final step of user authorization.
+After a user approves authorization to our Snyk App through the Snyk website, the user returns to our callback URI, `/callback`. We'll handle this route similarly, invoking passport again. This is the final step of user authorization.
The `CallbackController` accepts requests on `/callback`, but also creates two sub-routes, `/callback/success` and `/callback/failure`, to handle the different possible outcomes it might receive from Snyk.
@@ -670,7 +670,7 @@ new App([
### Refresh token management
-If we build and run our Snyk App at this point, hitting the `/auth` route will successfully jump us out to the Snyk authorization portal and, provided we confirm the authorization, we'll get kicked back to our local app's callback route at `/callback`. If we had a very simplistic, one-off use case, we could end things here. But there's one more piece of the puzzle we should figure out if we're going to keep our user's authorization fresh; that is token expiry.
+If we build and run our Snyk App at this point, hitting the `/auth` route jumps us out to the Snyk authorization portal and, after we confirm the authorization, we return to our local app's callback route at `/callback`. If we had a simplistic, one-off use case, we could end things here. But there's one more piece of the puzzle we should figure out if we're going to keep our user's authorization fresh, that is token expiry.
If you ran the app to test things, take a look at database entries. If you've been following along, you should see something like this:
@@ -695,7 +695,7 @@ That `expires_in` value will continue to count down until 0. If it does, the use
To keep our access token from going stale, we need to make a POST request using our `refresh_token` to get an updated `access_token`. See [Set up the refresh token exchange](../set-up-a-snyk-app-using-the-oauth2-api/set-up-the-refresh-token-exchange.md).
-We can automate this process in our Snyk App by utilizing [Axios interceptors](https://axios-http.com/docs/interceptors) to _intercept_ the requests we make and ensure we have an up-to-date `access_token`.
+We can automate this process in our Snyk App by using [Axios interceptors](https://axios-http.com/docs/interceptors) to _intercept_ the requests we make and ensure we have an up-to-date `access_token`.
Create the file `./src/util/interceptors.ts`, importing all the packages, classes, and so on that we'll need at the top:
@@ -802,7 +802,7 @@ async function refreshAndUpdateDb(data: AuthData): Promise {
}
```
-With our interceptors defined, the only thing we need to do is update our `callSnykApi` function to utilize them. Interceptors are methods of the `axiosInstance` object, so we'll add them after the `axios.create()` call and before the function's `return`.
+With our interceptors defined, the only thing we need to do is update our `callSnykApi` function to use them. Interceptors are methods of the `axiosInstance` object, so we'll add them after the `axios.create()` call and before the function's `return`.
```typescript
// ./src/util/APIHelpers.ts
@@ -837,6 +837,6 @@ export function callSnykApi(tokenType: string, token: string, version: APIVersio
## Wrap-up
-If you've made it this far, congratulations! You've learned how to register a Snyk App with Snyk, configure the authorization flow, keep the `auth_token` from getting stale, and set up a great starting point using TypeScript.
+You've now learned how to register a Snyk App with Snyk, configure the authorization flow, keep the `auth_token` from getting stale, and set up a starting point using TypeScript.
-In the next module of this tutorial, we'll add a template system and configure our app to show users all of their projects from Snyk in our App.
+In the next module of this tutorial, we'll add a template system and configure our app to show users all of their Projects from Snyk in our App.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/render-content-for-users.md b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/render-content-for-users.md
index 773329bc6df6..910de03aa28c 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/render-content-for-users.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/snyk-apps-apis/tutorial-create-a-snyk-app/render-content-for-users.md
@@ -1,12 +1,12 @@
# Render content for users
-In the previous module, we covered registering our Snyk App, setting up the authorization flow, and handling user authorization within our App. All of those topics are integral to the functionality of every Snyk App, but they're all what you might call "behind the scenes" topics.
+In the previous module, we covered registering our Snyk App, setting up the authorization flow, and handling user authorization in our App. All of those topics are integral to the functionality of every Snyk App, but they're all what you might call "behind the scenes" topics.
-In this module, we'll switch gears to focus on displaying content to the users who have authorized with our Snyk App. Specifically, we want to show unauthorized users a big button they can click to authorize and authorized users a list of their projects from Snyk.
+In this module, we'll focus on displaying content to the users who have authorized with our Snyk App. Specifically, we want to show unauthorized users a button they can click to authorize and authorized users a list of their Projects from Snyk.
## Add a template engine to the Snyk App
-While Express is perfectly capable of printing content to the screen and even rendering HTML server-side, life is much easier when using a template engine. For this tutorial we are using [EJS](https://ejs.co).
+While Express is capable of printing content to the screen and even rendering HTML server-side, life is much easier when using a template engine. For this tutorial we are using [EJS](https://ejs.co).
First, install the node packages needed in this part of the tutorial:
@@ -50,7 +50,7 @@ class App {
}
```
-For each route that we'll provide a template for, we'll need to modify the corresponding controller and ensure that we're using `res.render("")` rather than something more simplistic like `res.send()`.
+For each route that we'll provide a template for, we'll need to modify the corresponding controller and ensure that we're using `res.render("")` rather than something simpler like `res.send()`.
Example:
@@ -68,8 +68,6 @@ private indexPage(req: Request, res: Response, next: NextFunction) {
...
```
-That's all there is to it.
-
EJS templates support the concept of partial inclusion. While not strictly necessary, it makes sense to add a subdirectory to our `./src/views` to differentiate partial templates like headers and footers from route templates. For the tutorial, we'll use `./src/views/partials` to store such templates.
## Basic EJS templates
@@ -140,13 +138,13 @@ This `index.ejs` template will cover our basic `/` route.
These templates should be enough to get you started adding your own templates to any new routes you create. If you intend to continue using EJS, refer to the documentation for information about the features offered.
-Rendering content for your Snyk App can be as simple or complex as you'd like it to be. Because we're dealing with JavaScript, the options are very flexible!
+Rendering content for your Snyk App can be as simple or complex as you'd like it to be. Because we're dealing with JavaScript, the options are flexible.
## Showing users a list of projects
-Now that we have some basic templates, take a look at how we can add some functionality to our Snyk App using a User's Snyk data. For this tutorial, we set up our app to allow users to view all of their projects within Snyk from within our app.
+Now that we have some basic templates, take a look at how we can add some functionality to our Snyk App using a user's Snyk data. For this tutorial, we set up our app to let users view all of their Projects in Snyk from within our app.
-This is a basic and easily extendable feature.
+This is a basic and extendable feature.
We need to create:
@@ -154,7 +152,7 @@ We need to create:
* A function (or functions) to pull the project data
* An EJS template for showing the projects
-We start with the API work, using the `callSnykApi()` function we created in the previous module. Since this directly relates to a particular route, we'll store this file with its controller. Following the pattern we've used throughout these tutorial modules, we'll create both files at `./src/routes/projects/`.
+We start with the API work, using the `callSnykApi()` function we created in the previous module. Since this directly relates to a particular route, we'll store this file with its controller. Following the pattern we've used throughout these tutorial modules, we'll create both files in `./src/routes/projects/`.
```typescript
// ./src/routes/projects/projectsHandler.ts
@@ -269,4 +267,4 @@ new App([
Using the project's API handler and controller we created in this module, you should have all you need to create your own custom code and make your Snyk App do whatever you'd like it to do.
-We used the v1 API but keep an eye on Snyk's REST API. As additional features are added, you may find new or more efficient endpoints to use in your Snyk App.
+We used the v1 API, but keep an eye on the Snyk REST API. As Snyk adds features, you may find new or more efficient endpoints to use in your Snyk App.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/about-webhooks.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/about-webhooks.md
index 6f1d7c4751d3..7c04b4cf2cf8 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/about-webhooks.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/about-webhooks.md
@@ -4,7 +4,7 @@
The Webhooks API is in beta. While the API is in beta, Snyk may change the API and the structure of webhook payloads at any time, without notice. During this beta, Webhooks are available only in the Snyk US-01, US-02, EU-01, and AU-01 regions.
{% endhint %}
-Webhooks allow you to be notified of Snyk system events, enabling you to build notifications and react to changes in your projects. The current implementation supports events for recurring scans of open source and container image related projects.
+Webhooks notify you of Snyk system events, so you can build notifications and react to changes in your Projects. The current implementation supports events for recurring scans of open source and container image related Projects.
When events are triggered, Snyk sends HTTP POST requests to URLs you have configured for those events, with all the information you need.
@@ -12,17 +12,17 @@ When events are triggered, Snyk sends HTTP POST requests to URLs you have config
### Notifications
-Receive instant notifications/alerts in your organization's business communication/collaboration software.
+Receive instant notifications and alerts in your organization's business communication and collaboration software.
-### Incident Response
+### Incident response
-Respond to critical issues before they impact your business. Embrace modern incident management and Snyk to stay ahead of application security. Read more about this use case in the blog ["Shifting left security incident management with the Snyk & Opsgenie integration"](https://snyk.io/blog/security-incident-management-snyk-opsgenie-integration/).
+Respond to critical issues before they impact your business. Embrace modern incident management and Snyk to stay ahead of application security. Read more about this use case in the blog ["Shifting left security incident management with the Snyk and Opsgenie integration"](https://snyk.io/blog/security-incident-management-snyk-opsgenie-integration/).
### Security Information and Event Management (SIEM)
-Get real-time security alerts aggregated across various sources into a single platform. Read more about Snyk's partnership with Rapid7 and how together we help organizations mitigate security risks.
+Get real-time security alerts aggregated across various sources into a single platform. Read more about the Snyk partnership with Rapid7 and how together we help organizations mitigate security risks.
-### Vulnerability Management and Aggregation
+### Vulnerability management and aggregation
Browse the various [Snyk Partner integrations](../../../integrations/partner-integrations.md) for a comprehensive list of solutions.
@@ -32,13 +32,13 @@ Webhooks can only be configured for URLs using the HTTPS protocol. HTTP is not a
## Request signing
-When creating a webhook, you must provide a secret - this is a string that only you know that we will use to sign our transports to you so that you can ensure they come from Snyk. Your secret should be:
+When creating a webhook, you must provide a secret - this is a string that only you know and that Snyk uses to sign transports to you so that you can ensure they come from Snyk. Your secret should be:
* A random string with high entropy
-* Not be used for anything else
-* Only known to Snyk and your webhook transport consuming code
+* Not used for anything else
+* Known only to Snyk and your webhook transport consuming code
-All transports sent to your webhooks will have a `X-Hub-Signature` header, which contains the hash signature for the transport. The signature is a HMAC hexdigest of the request body, generated using sha256 and your secret as the HMAC key.
+All transports sent to your webhooks have a `X-Hub-Signature` header, which contains the hash signature for the transport. The signature is an HMAC hexdigest of the request body, generated using sha256 and your secret as the HMAC key.
{% hint style="info" %}
`X-Hub-Signature` always starts with `sha256=`
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/README.md
index 0b4b0d25f06d..44e66ac0fa36 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/README.md
@@ -2,7 +2,7 @@
You can use Snyk Webhooks alongside a Lambda function to receive and filter new vulnerabilities discovered by Snyk in your Slack.
-Exposing the Lambda function to Snyk Webhooks is covered through two options, API Gateway and a Lambda Function URL. Choose the variant that suits your needs and environment the best. If you are not using API Gateway, you may disregard any of those instructions in this guide.
+This guide covers two options for exposing the Lambda function to Snyk Webhooks: API Gateway and a Lambda Function URL. Choose the variant that best suits your needs and environment. If you are not using API Gateway, you can disregard those instructions in this guide.
The **prerequisites** are as follows:
@@ -18,7 +18,7 @@ The Snyk Webhook, AWS Lambda function, and Slack notification **work as follows*
* Each time Snyk discovers a new vulnerability, it triggers the Snyk API Webhook.
* That triggers the Lambda function to send notifications to Slack. The goal of the Lambda function is to filter these notifications and customize the Slack payload to show the information that is interesting to you.
-* When you receive the Slack notification you can act on the newly discovered vulnerability.
+* When you receive the Slack notification, you can act on the newly discovered vulnerability.
This guide **explains** how to use an AWS Lambda function to filter the payload from Snyk Webhooks into Slack.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-add-security-through-an-environment-variable.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-add-security-through-an-environment-variable.md
index 53e1ed7082f3..228ec92bfbb3 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-add-security-through-an-environment-variable.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-add-security-through-an-environment-variable.md
@@ -4,7 +4,7 @@ For security reasons the script that you created uses an environment variable: `
Follow these steps to add security through an environment variable:
-1. Go to the **Configuration** tab in the AWS Lambda function.
+1. Navigate to the **Configuration** tab in the AWS Lambda function.
2. Click **Environment variables**.
3. Add the new environment variable.
4. Use `hmac_verification` as your key.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-create-lambda-function-to-connect-snyk-to-slack.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-create-lambda-function-to-connect-snyk-to-slack.md
index 017293b407b3..35244c3bcac4 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-create-lambda-function-to-connect-snyk-to-slack.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-create-lambda-function-to-connect-snyk-to-slack.md
@@ -1,8 +1,8 @@
# AWS Lambda setup: create Lambda function to connect Snyk to Slack
-AWS Lambda functions are used to connect Snyk to Slack because these functions are an inexpensive and efficient way of running code triggered by events, for example when there is a new Snyk vulnerability.
+AWS Lambda functions connect Snyk to Slack because these functions are an inexpensive and efficient way of running code triggered by events, for example when there is a new Snyk vulnerability.
-**Note:** If publishing the Lambda function through API Gateway, both must be configured in the same region. You can check this on the top right of the AWS Console.
+**Note:** If publishing the Lambda function through API Gateway, you must configure both in the same region. You can check this in the AWS Console.
Start by creating a zip file containing the code for the function and the necessary dependencies.
@@ -194,7 +194,7 @@ Start by creating a zip file containing the code for the function and the necess
To create an AWS Lambda function, follow these steps:
-1. Go to the AWS Console.
+1. Navigate to the AWS Console.
2. Navigate to Lambda.
3. Click **Create function**.
4. Choose **Node.js 16.x** for the **Runtime**.
@@ -208,4 +208,4 @@ To create an AWS Lambda function, follow these steps:
AWS code source display
10. In the code, modify the `slackWebhookUrl` to match your Slack webhook URL.
-11. For more information on the script you have pasted, go to [Configure the AWS Lambda Script](configure-the-aws-lambda-script.md).
+11. For more information about the script you have pasted, see [Configure the AWS Lambda Script](configure-the-aws-lambda-script.md).
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/README.md
index 8012c6b5dd70..7bc3271fd897 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/README.md
@@ -1,3 +1,3 @@
# AWS Lambda setup: expose a public URL
-For Snyk to be able to send webhooks to the Lambda function you will need a public URL exposing the function. To do this you have two options, [API Gateway](with-api-gateway/) or a [Lambda function URL](with-a-lambda-function-url/). Choose the option that suits your current environments or needs the best.
+For Snyk to send webhooks to the Lambda function, you need a public URL exposing the function. To do this you have two options, [API Gateway](with-api-gateway/) or a [Lambda function URL](with-a-lambda-function-url/). Choose the option that best suits your current environments or needs.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/README.md
index 7ccc0d29faaf..e3b34e51ca1a 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/README.md
@@ -1,3 +1,3 @@
# With a Lambda Function URL
-The goal of this option is to avoid the need of AWS API Gateway and expose the Lambda function directly with the help of a Lambda Function URL.
+The goal of this option is to avoid the need for AWS API Gateway and expose the Lambda function directly with the help of a Lambda Function URL.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/modify-the-lambda-function.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/modify-the-lambda-function.md
index 9bbcec4ada71..1fa72527f918 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/modify-the-lambda-function.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-a-lambda-function-url/modify-the-lambda-function.md
@@ -1,6 +1,6 @@
# Modify the Lambda function
-1. Open your Lambda function and click on **Configuration**.
+1. Open your Lambda function and click **Configuration**.
2. Select **Function URL** and then **Create function URL**.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/README.md
index df277dd1a61d..eb276d641936 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/README.md
@@ -1,3 +1,3 @@
# With API Gateway
-The goal of this option is to use AWS API Gateway to trigger the Lambda function every time a new event is received.
+The goal of this option is to use AWS API Gateway to trigger the Lambda function each time a new event is received.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-add-the-post-method-to-connect-snyk-to-slack.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-add-the-post-method-to-connect-snyk-to-slack.md
index 07dc6c32084d..498a117db963 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-add-the-post-method-to-connect-snyk-to-slack.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-add-the-post-method-to-connect-snyk-to-slack.md
@@ -1,18 +1,18 @@
# AWS API Gateway: add the POST method to connect Snyk to Slack
-The payload Slack will receive will have a message, so create a POST method that will receive the message, verify it is a valid message, and then send on to the AWS Lambda function.
+The payload that Slack receives has a message, so create a POST method that receives the message, verifies it is a valid message, and then sends it on to the AWS Lambda function.
Follow these steps to add the POST Method:
1. Navigate to the AWS API Gateway you have created.
2. Click **Resources**.
-3. To create the method, navigate to **Actions** -> **Create Method** -> **Post**.
+3. To create the method, navigate to **Actions** > **Create Method** > **Post**.
4. Configure the AWS API Gateway to work with the Lambda function you created by adding the Gateway in the adjacent Lambda function box:\
Choose the **Lambda Function Integration type**.\
Select **Default Timeout**.
AWS Lambda function box
-5. In the **Resources**, lick the new **POST** method.
+5. In the **Resources**, click the new **POST** method.
6. Click **Integration Request** (top right on the AWS Gateway POST method execution screen).
AWS Gateway POST method execution
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-deploy-the-post-method.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-deploy-the-post-method.md
index 6479f0f18b6a..f15a3b9e58cf 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-deploy-the-post-method.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-deploy-the-post-method.md
@@ -1,10 +1,10 @@
# AWS API Gateway: deploy the POST method
-Deploy with configured POST method so the AWS Lambda function can start receiving the information.
+Deploy the configured POST method so the AWS Lambda function can start receiving the information.
Follow these steps to deploy the POST method:
-1. Go to the **Resources** tab.
+1. Navigate to the **Resources** tab.
2. Click **POST**.
3. On the **Actions** tab, click **Deploy API**.
@@ -12,7 +12,7 @@ Follow these steps to deploy the POST method:
4. Select the **Deployment stage** to which you want to deploy the new API, in this case, the **default** stage.
AWS Gateway Deploy API to default stage
-5. Navigate back to your Lambda function and In the Lambda trigger configuration, verify you see a new API endpoint.
+5. Navigate back to your Lambda function and, in the Lambda trigger configuration, verify you see a new API endpoint.
6. Copy the API endpoint from the API Gateway boxes (obscured) for use in setting up the Snyk webhook.
AWS Lambda function trigger configuration showing new endpoint
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-lambda-setup-set-up-the-trigger.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-lambda-setup-set-up-the-trigger.md
index 92d6e63865e7..5472cd1332c4 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-lambda-setup-set-up-the-trigger.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-lambda-setup-set-up-the-trigger.md
@@ -1,4 +1,4 @@
-# AWS API Gateway: Setting up a trigger
+# AWS API Gateway: set up a trigger
Follow these steps to add the AWS API Gateway to the function:
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/configure-the-aws-lambda-script.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/configure-the-aws-lambda-script.md
index 555a99f6ca0b..ae073f9ea99a 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/configure-the-aws-lambda-script.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/configure-the-aws-lambda-script.md
@@ -126,6 +126,6 @@ async function messageSlack(message,snykProjectUrl,snykProjectName,snykIssuePack
}
```
-Snyk used Slack’s built-in block builder to design the payload in the desired format. With the block builder you can configure the JSON of the payload to display more information like the CWE, add more interactions, and even use the ignore API from Snyk to create an ignore button.
+Snyk used the built-in block builder in Slack to design the payload in the desired format. With the block builder you can configure the JSON of the payload to display more information like the CWE, add more interactions, and even use the ignore API from Snyk to create an ignore button.
You can find more information about the block builder ([Block Kit](https://api.slack.com/block-kit)) on the Slack website.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/set-up-the-snyk-webhook.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/set-up-the-snyk-webhook.md
index d4c2e93b72f8..c18d8dc14303 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/set-up-the-snyk-webhook.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/set-up-the-snyk-webhook.md
@@ -18,4 +18,4 @@ Content-Type: application/json
}
```
-With this request done, your connection from Snyk to Slack will be completed. Every time there is a new vulnerability, you will get a new notification.
+With this request done, your connection from Snyk to Slack is complete. Each time there is a new vulnerability, you get a new notification.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/slack-setup-to-connect-snyk-with-aws-lambda.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/slack-setup-to-connect-snyk-with-aws-lambda.md
index ff9cc1a93c8e..328d934feab3 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/slack-setup-to-connect-snyk-with-aws-lambda.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/slack-setup-to-connect-snyk-with-aws-lambda.md
@@ -4,7 +4,7 @@ To enable Snyk to communicate with Slack, start by setting up incoming webhooks
To set up Slack Apps with a webhook, follow these steps:
-1. Go to [https://api.slack.com/apps](https://api.slack.com/apps).
+1. Navigate to [https://api.slack.com/apps](https://api.slack.com/apps).
2. Select **Create New App**.
Your Apps in Slack
@@ -21,7 +21,7 @@ To set up Slack Apps with a webhook, follow these steps:
9. Activate incoming webhooks in that page.
Incoming webhooks activation
-10. Generate a webhook URL for the channel you want by clicking on **Add New Webhook to Workspace**.
+10. Generate a webhook URL for the channel you want by clicking **Add New Webhook to Workspace**.
11. Select the channel you want Snyk to post to. If you haven’t already done so, [create a channel](https://slack.com/intl/en-gb/help/articles/201402297-Create-a-channel).
12. When the webhook has been created, copy and save the webhook URL to use in the next step in AWS.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/test-the-snyk-webhook-connection.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/test-the-snyk-webhook-connection.md
index 51d307ca11dc..4dec46af412b 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/test-the-snyk-webhook-connection.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-connect-snyk-to-slack-with-aws-lambda/test-the-snyk-webhook-connection.md
@@ -1,10 +1,10 @@
# Test the Snyk webhook connection
-The Snyk Webhook only updates when there is a new vulnerability found, but you can test your implementation using Postman.
+The Snyk Webhook only updates when a new vulnerability is found, but you can test your implementation using Postman.
If you don’t have Postman you can [install](https://www.postman.com/downloads/) it for free.
-To test, you will send a POST request to the AWS API Gateway with a sample payload that is secured with your API token.
+To test, send a POST request to the AWS API Gateway with a sample payload that is secured with your API token.
Follow these steps to test the connection:
@@ -23,8 +23,8 @@ Follow these steps to test the connection:
5. Change the method to **POST** and add your API Gateway URL or Function URL. Refer to [AWS API Gateway: add the POST method to connect Snyk to Slack](aws-lambda-setup-set-up-the-trigger/with-api-gateway/aws-api-gateway-add-the-post-method-to-connect-snyk-to-slack.md) for instructions on finding the URL.
Postman POST method add AWS API Gateway URL
-6. Configure your pre-request script to look like the following code. This script get your API token and secures it so when Snyk sends it with the payload the Lambda function can decrypt the payload.\
- The code follows; remember to change enter your API token for '`your-secret-string-here'`.\
+6. Configure your pre-request script to look like the following code. This script gets your API token and secures it so that when Snyk sends it with the payload, the Lambda function can decrypt the payload.\
+ The code follows. Remember to enter your API token for '`your-secret-string-here'`.\
\
`postman.setEnvironmentVariable('x-hub-signature', CryptoJS.HmacSHA256(request.data, 'your-secret-string-here').toString(CryptoJS.digest)); postman.setEnvironmentVariable('x-hub-signature', 'sha256='+ postman.getEnvironmentVariable('x-hub-signature'));`\
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/README.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/README.md
index 46b83c405b9f..30447fd7dd2f 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/README.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/README.md
@@ -2,7 +2,7 @@
New Relic Security API is the most recent approach to having New Relic send any type of security-related information into the New Relic platform. This API is part of New Relic's Vulnerability Management capabilities.
-Using New Relic Security API is beneficial because New Relic “understands” the type of data being ingested and is able to provide a curated user interface for the information. New Relic also offers a standardized way of correlating this information with other types of data that New Relic is able to consume. You can see the correlations on the tabs in New Relic, including the vulnerability management section of an entity.
+Using New Relic Security API is beneficial because New Relic “understands” the type of data being ingested and can provide a curated user interface for the information. New Relic also offers a standardized way of correlating this information with other types of data that New Relic can consume. You can see the correlations on the tabs in New Relic, including the vulnerability management section of an entity.
Entity-level vulnerability management
@@ -11,13 +11,13 @@ Examples of such correlations are:
* For an application monitored by New Relic APM (Application Performance Monitoring), the Snyk Webhook provides the repository where the application resides. New Relic can then correlate issues Snyk identifies from an application security perspective with the APM data.
* For a container that is running inside a Kubernetes cluster where New Relic knows everything about the runtime behavior, the Snyk Webhook provides the ImageID. New Relic can then correlate detailed information provided about security aspects for the container.
-New Relic also provides a dedicated Vulnerability Management section for all of your security-related issues. The information shared using the Snyk webhook will automatically be populated automatically in this section.
+New Relic also provides a dedicated Vulnerability Management section for all of your security-related issues. The information shared using the Snyk webhook is populated automatically in this section.
Vulnerability Management
To set up the integration between Snyk and New Relic, follow the steps on these pages. There are two ways to achieve this:
-1. Through New Relic's native security ingest processor: follow the guide on [New Relic docs](https://docs.newrelic.com/docs/vulnerability-management/integrations/snyk/) to get started
+1. Through the native security ingest processor in New Relic: follow the guide in the [New Relic docs](https://docs.newrelic.com/docs/vulnerability-management/integrations/snyk/) to get started.
2. Through an Azure Function App that acts as a proxy: begin with [Create an Azure Function App](create-an-azure-function-app.md).
If you have **problems** setting up or using the Snyk Webhook, **contact** your Solutions Engineer or Technical Success Manager for help.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/configure-azure-function-environment-variables.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/configure-azure-function-environment-variables.md
index 58b82a54c699..91f73c61c463 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/configure-azure-function-environment-variables.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/configure-azure-function-environment-variables.md
@@ -7,7 +7,7 @@ Navigate to your Azure Function App Configuration and add the following new appl
* **NEW\_RELIC\_SECURITY\_URL**: URL for the New Relic Security API, that is, https://security-api.newrelic.com/security/v1
* **NEW\_RELIC\_LICENSE\_KEY**: New Relic License Key
-If you are using Azure DevOps Repos in your Snyk account, you may also want to configure the following application setting:
+If you are using Azure DevOps Repos in your Snyk account, you can also configure the following application setting:
* **AZURE\_DEVOPS\_ORG**: the name of your Azure DevOps organization
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/copy-the-azure-function-url.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/copy-the-azure-function-url.md
index c8244728220a..64d13eb33f7f 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/copy-the-azure-function-url.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/copy-the-azure-function-url.md
@@ -1,6 +1,6 @@
# Copy the Azure Function URL
-Select the appropriate Azure Function and copy the Function URL. You need this URL in the next step, in order to [Create a Snyk Webhook](create-a-snyk-webhook.md).
+Select the appropriate Azure Function and copy the Function URL. You need this URL in the next step, to [Create a Snyk Webhook](create-a-snyk-webhook.md).
An example follows for one user's New Relic Azure Function.
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/create-a-snyk-webhook.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/create-a-snyk-webhook.md
index af9b35337ef4..e38a99576108 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/create-a-snyk-webhook.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/create-a-snyk-webhook.md
@@ -27,7 +27,7 @@ The response is like this:
}
```
-You can then use the [Ping a webhook API](../../../../reference/webhooks-v1.md#org-orgid-webhooks-webhookid-ping) to pro-actively trigger the Snyk Webhook in order to test your integration:
+You can then use the [Ping a webhook API](../../../../reference/webhooks-v1.md#org-orgid-webhooks-webhookid-ping) to proactively trigger the Snyk Webhook to test your integration:
```http
POST https://api.snyk.io/v1/org/{SNYK-ORG-ID}/webhooks/{SNYK-WEBHOOK-ID}/ping HTTP/2
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/new-relic-curated-ui-and-snyk-custom-dashboard.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/new-relic-curated-ui-and-snyk-custom-dashboard.md
index 83c0454ee596..27f2cee86339 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/new-relic-curated-ui-and-snyk-custom-dashboard.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/guides-to-webhooks/how-to-use-snyk-webhooks-to-integrate-new-relic-with-snyk/new-relic-curated-ui-and-snyk-custom-dashboard.md
@@ -1,6 +1,6 @@
# New Relic Curated UI and Snyk Custom Dashboard
-Once the Azure Function and the Snyk Webhook are created, you see data coming in for Snyk projects with the configured retest frequency, or projects that you scan manually and where Snyk identifies new issues.
+After the Azure Function and the Snyk Webhook are created, you see data coming in for Snyk Projects with the configured retest frequency, or Projects that you scan manually and where Snyk identifies new issues.
## Vulnerability event type
@@ -10,7 +10,7 @@ You can look into the Vulnerability event type to validate that data flows into
## New Relic Vulnerability Management
-In addition New Relic provides a curated UI, a New Relic app named Vulnerability Management, that you can use to visualize all the issues being sent.
+In addition, New Relic provides a curated UI, a New Relic app named Vulnerability Management, that you can use to visualize all the issues being sent.
Vulnerability management app
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/validation-and-versioning-of-payloads.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/validation-and-versioning-of-payloads.md
index 8d4a29b8d94a..d1b13f059995 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/validation-and-versioning-of-payloads.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/validation-and-versioning-of-payloads.md
@@ -4,7 +4,7 @@
All transports sent to your webhooks have a `X-Hub-Signature` header, which contains the hash signature for the transport. The signature is a HMAC hexdigest of the request body, generated using sha256 and your `secret` as the HMAC key.
-You could use a function in Node.JS such as the following to validate these signatures on incoming requests from Snyk:
+You can use a function in Node.js such as the following to validate these signatures on incoming requests from Snyk:
```
import * as crypto from 'crypto';
@@ -27,6 +27,6 @@ Payloads may evolve over time, and so are versioned. Payload versions are suppli
Version numbers only increment when a breaking change is made, for example, removing a field that used to exist, or changing the name of a field. Version numbers do not increment when making an additive change, such as adding a new field that never existed before.
{% hint style="warning" %}
-During the BETA phase, the structure of webhook payloads may change at any time, so Snyk recommends that you check the payload version.
+During the BETA phase, the structure of webhook payloads can change at any time, so Snyk recommends that you check the payload version.
{% endhint %}
diff --git a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/webhooks.md b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/webhooks.md
index 0e0f789a7766..81896364f827 100644
--- a/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/webhooks.md
+++ b/developer-tools/snyk-api/using-specific-snyk-apis/webhooks-apis/webhooks.md
@@ -10,7 +10,7 @@ Webhooks are delivered with a `Content-Type` of `application/json`, with the eve
After your server is configured to receive payloads, it listens for any payload sent to the endpoint you configured. For security reasons, you should limit requests to those coming from Snyk.
-While consuming a webhook event, `X-Snyk-Event` header must be checked, as an end-point may receive multiple event types as described.
+While consuming a webhook event, you must check the `X-Snyk-Event` header, as an endpoint can receive multiple event types as described.
## **ping**
@@ -34,7 +34,7 @@ Content-Type: application/json
## **project\_snapshot**
-This event is triggered every time an existing project is tested and a new snapshot is created. It is triggered on every test of a project, whether or not there are new issues. This event is not triggered when a new project is created or imported. Currently supported targets/scan types are Open Source and container.
+This event is triggered every time an existing Project is tested and a new snapshot is created. It is triggered on every test of a Project, whether or not there are new issues. This event is not triggered when a new Project is created or imported. Supported targets and scan types are Open Source and container.
```sh
POST /webhook-handler/snyk123 HTTP/1.1
diff --git a/developer-tools/snyk-api/v1-api.md b/developer-tools/snyk-api/v1-api.md
index 0d474163d1d2..634e581f1941 100644
--- a/developer-tools/snyk-api/v1-api.md
+++ b/developer-tools/snyk-api/v1-api.md
@@ -7,10 +7,10 @@ The Snyk API is available only for Enterprise plans.
For more information, see [Plans and pricing](https://snyk.io/plans).
-The V1 API will be deprecated eventually, as further Snyk developments are now focused on the REST API.
+The V1 API will be deprecated eventually, as Snyk now focuses further development on the REST API.
{% endhint %}
-The V1 API enables you to test a package for issues as they are defined by Snyk, and to automate Snyk processes to accomplish your specific workflows. Customers and partners can perform functions including:
+The V1 API lets you test a package for issues as Snyk defines them, and automate Snyk processes to accomplish your specific workflows. Customers and partners can perform functions including:
* Accessing vulnerability data
* Scanning Projects and applications
@@ -26,7 +26,7 @@ Snyk is hosted in the following regions. Each region has its own base URL.
Region
Base URL
SNYK-US-01
https://api.snyk.io/v1/
SNYK-US-02
https://api.us.snyk.io/v1/
SNYK-EU-01
https://api.eu.snyk.io/v1/
SNYK-AU-01
https://api.au.snyk.io/v1/
{% hint style="info" %}
-This API is available only over HTTPS. Calling the API over HTTP will yield a 404 for all requests.
+This API is available only over HTTPS. Calling the API over HTTP yields a 404 for all requests.
{% endhint %}
## Authorization
@@ -39,7 +39,7 @@ Provide the token in an `Authorization` header with the token, preceded by `toke
Authorization: token API_KEY
```
-Otherwise, a 401 "Unauthorized" response will be returned.
+Otherwise, the API returns a 401 "Unauthorized" response.
```
HTTP/1.1 401 Unauthorized
@@ -57,7 +57,7 @@ Snyk limits the requests to the V1 API to help provide a stable experience for c
The V1 API has a default rate limit of **2,000 requests per minute**, but some specific endpoints have lower limits. Refer to the reference docs for each endpoint to see the rate limits.
-If you exceed the rate limit, you will receive a `429` error response.
+If you exceed the rate limit, you receive a `429` error response.
## Errors
diff --git a/developer-tools/snyk-ci-cd-integrations/README.md b/developer-tools/snyk-ci-cd-integrations/README.md
index 7c48d8448718..0e49d051e741 100644
--- a/developer-tools/snyk-ci-cd-integrations/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/README.md
@@ -5,14 +5,14 @@ Snyk recommends using the [CLI ](../snyk-cli/)for CI/CD integrations for the fol
* You have the flexibility to test in-progress features of the CLI by using the [preview channel](../snyk-cli/releases-and-channels-for-the-snyk-cli.md#preview).
* The CLI provides feature-rich [stable releases](../snyk-cli/releases-and-channels-for-the-snyk-cli.md#stable) at a regular cadence.
-* With the CLI, you have options to [extend use cases](../snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/) as you deploy Snyk at scale
+* With the CLI, you have options to [extend use cases](../snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/) as you deploy Snyk at scale.
For more information, see the [Snyk CLI repository](https://github.com/snyk/cli).
{% endhint %}
## Adopting a CI/CD integration
-When you decide to use a CI/CD integration, you typically adopt the integration in stages, initially selecting a deployment method and the implementing strategies for the code you are scanning. For details, see [Snyk CI/CD Integration deployment and strategies](snyk-ci-cd-integration-deployment-and-strategies/).
+When you decide to use a CI/CD integration, you typically adopt the integration in stages, initially selecting a deployment method and implementing strategies for the code you are scanning. For details, see [Snyk CI/CD Integration deployment and strategies](snyk-ci-cd-integration-deployment-and-strategies/).
For detailed information, see the pages for the integration you are using:
@@ -33,7 +33,7 @@ For additional examples of binary and npm integrations for CI/CD, see [GitHub CI
## Support policy
-Snyk supports the latest 12 months of CI/CD plugin versions, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and will not receive bug fixes or troubleshooting.
+Snyk supports the latest 12 months of CI/CD plugin versions, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and do not receive bug fixes or troubleshooting.
Snyk provides fixes only in new versions and cannot fix older versions. Customers must upgrade to benefit from improvements.
diff --git a/developer-tools/snyk-ci-cd-integrations/aws-codepipeline-integration-by-adding-a-snyk-scan-stage.md b/developer-tools/snyk-ci-cd-integrations/aws-codepipeline-integration-by-adding-a-snyk-scan-stage.md
index cdd5efdc3e6c..abc559882630 100644
--- a/developer-tools/snyk-ci-cd-integrations/aws-codepipeline-integration-by-adding-a-snyk-scan-stage.md
+++ b/developer-tools/snyk-ci-cd-integrations/aws-codepipeline-integration-by-adding-a-snyk-scan-stage.md
@@ -76,7 +76,7 @@ The Snyk Open Source scan must be in the same CodeBuild action as the build proc
Using the [Snyk CLI](../snyk-cli/commands/) in CodeBuild gives you full access to its functionality and options. To get started with basic result handling, you can follow these tips:
* The `snyk test` command produces a non-zero exit code when vulnerabilities are found. Consider adding `|| true` to the end of the command to circumvent this behavior.
-* The [snyk-to-html](https://github.com/snyk/snyk-to-html) tool can be used to produce an HTML report of scan results by running a command similar to `snyk test --json | snyk-to-html -o snyk-results.html` . For more information, see the [`snyk-to-html`](../snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md) documentation.
+* You can use the [snyk-to-html](https://github.com/snyk/snyk-to-html) tool to produce an HTML report of scan results by running a command similar to `snyk test --json | snyk-to-html -o snyk-results.html` . For more information, see the [`snyk-to-html`](../snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md) documentation.
* Consider the following CLI options for common usage patterns:
* [--org=\](../snyk-cli/commands/test.md#org-less-than-org_id-greater-than) - Specify the \ to run Snyk commands tied to a specific Snyk Organization.
* [--severity-threshold=\](../snyk-cli/commands/test.md#severity-threshold-less-than-low-or-medium-or-high-or-critical-greater-than) - Report vulnerabilities only at the specified level or higher.
@@ -94,7 +94,7 @@ Using the [Snyk CLI](../snyk-cli/commands/) in CodeBuild gives you full access t
* When testing is complete, consider deploying the updated CodePipeline.
* Monitor your pipeline for successful Snyk scan execution and address any integration issues.
-### Next Steps
+### Next steps
Refer to the [Snyk CLI](../snyk-cli/) documentation to incorporate additional security scans into your CI/CD pipeline.
diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/README.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/README.md
index e57111950ff0..6a67a6158bf3 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/README.md
@@ -8,9 +8,9 @@ The Snyk Security Scan task is available for all languages supported by Snyk and
The Snyk Security Scan task supports Snyk Open Source, Snyk Container, and Snyk Code. If you plan to include other products in your pipeline, use the [Snyk CLI](../../snyk-cli/).
{% endhint %}
-Ready-to-use tasks for Azure Pipelines can be inserted quickly and directly from the Azure interface, enabling you to customize and automate your pipelines with no extra coding. Among the tasks included is the Snyk task.
+You can insert ready-to-use tasks for Azure Pipelines quickly and directly from the Azure interface, so you can customize and automate your pipelines with no extra coding. Among the tasks included is the Snyk task.
-You can include the Snyk task in your pipeline to test for security vulnerabilities and open-source license issues as part of your routine work. In this way, you can test and monitor your application dependencies and container images for security vulnerabilities. When the testing is done you can review and work with results directly from the Azure Pipelines output, as well as from the Snyk interface.
+You can include the Snyk task in your pipeline to test for security vulnerabilities and open-source license issues as part of your routine work. In this way, you can test and monitor your application dependencies and container images for security vulnerabilities. When the testing is done, you can review and work with results directly from the Azure Pipelines output, as well as from the Snyk interface.
For setup and use details, see the following pages:
diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/add-the-snyk-security-task-to-your-pipelines.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/add-the-snyk-security-task-to-your-pipelines.md
index e1fdd482bec6..4f547ceb94c9 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/add-the-snyk-security-task-to-your-pipelines.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/add-the-snyk-security-task-to-your-pipelines.md
@@ -9,20 +9,20 @@
## **Requirements to add Snyk Security Task to your pipelines**
-This extension requires that Node.js and npm be installed on the build agent. These are available by default on all Microsoft-hosted build agents. However, if you are using a self-hosted build agent, you may need to explicitly activate Node.js and npm and ensure they are in your [PATH](https://en.wikipedia.org/wiki/PATH_\(variable\)). This can be done using the [NodeTool task from Microsoft](https://docs.microsoft.com/en-us/azure/devops/pipelines/tasks/tool/node-js?view=azure-devops) prior to adding the Snyk Security Scan task to your pipeline.
+This extension requires that Node.js and npm be installed on the build agent. These are available by default on all Microsoft-hosted build agents. However, if you are using a self-hosted build agent, you might need to explicitly activate Node.js and npm and ensure they are in your [PATH](https://en.wikipedia.org/wiki/PATH_\(variable\)). Use the [NodeTool task from Microsoft](https://docs.microsoft.com/en-us/azure/devops/pipelines/tasks/tool/node-js?view=azure-devops) to do this before adding the Snyk Security Scan task to your pipeline.
## **Steps to add Snyk Security Task to your pipelines**
1. Add the Snyk Security Scan task when you create your pipeline or while editing an existing one. See the [Azure Pipelines documentation](https://docs.microsoft.com/en-us/azure/devops/pipelines/?view=azure-devops).
-2. From Azure, access the pipeline that you want to scan for vulnerabilities. Open it for editing and check that the Build step is included just before the point at which you want to insert the Snyk task. Note that this is not required but is considered best practice for consistency across projects.
+2. From Azure, access the pipeline that you want to scan for vulnerabilities. Open it for editing and check that the Build step appears just before the point at which you want to insert the Snyk task. This is not required but is considered best practice for consistency across projects.
3. Open the **assistant**, search for the Snyk Security Scan task, and click it as shown in the screen image that follows. The configuration panel opens on top of the assistant.
Search for the Snyk Security Scan Task
4. Complete the fields in the configuration.
1. Find full details about the parameters on the page [Snyk Security Scan task parameters and values](snyk-security-scan-task-parameters-and-values.md).
- 2. Note that if you check the **Fail build if Snyk finds issue** option, when the build fails the pipeline job is failed by the Snyk task.
- 3. If you uncheck the **Fail build if Snyk finds issue** option, the Snyk task tests for vulnerabilities but does not cause the pipeline job to fail.
+ 2. If you select the **Fail build if Snyk finds issue** option, the Snyk task fails the pipeline job when the build fails.
+ 3. If you clear the **Fail build if Snyk finds issue** option, the Snyk task tests for vulnerabilities but does not cause the pipeline job to fail.
4. When testing a container image, you can specify the path to the Dockerfile with the dockerfilePath property to receive additional information about issues in your base image.
5. To add your Dockerfile for additional base image data when testing your container, ensure the image has been built.
5. Place your cursor inside the pipeline, ensuring you place it before a deployment step, such as **npm publish** or **docker push**.
diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-for-a-container-image-pipeline.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-for-a-container-image-pipeline.md
index a6d2736bc4d6..65831826d466 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-for-a-container-image-pipeline.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-for-a-container-image-pipeline.md
@@ -6,6 +6,6 @@ When populated with the most common settings, the configuration panel in Azure l
Snyk Security Scan configuration panel
-The following shows the same configuration once you have added it to your pipeline.
+The following shows the same configuration after you have added it to your pipeline.

diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-a-node.js-npm-based-application.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-a-node.js-npm-based-application.md
index 701d82f0c7b0..b848912c7a9f 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-a-node.js-npm-based-application.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-a-node.js-npm-based-application.md
@@ -6,6 +6,6 @@ The configuration panel appears as follows:
Snyk Security Scan configuration panel
-Click **add** and the task is added to your pipeline as follows:
+Click **Add** and the task is added to your pipeline as follows:

diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-application-code.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-application-code.md
index 9cf3541bbf9b..8d72ff2d8aeb 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-application-code.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/example-of-a-snyk-task-to-test-application-code.md
@@ -6,6 +6,6 @@ The configuration panel appears as follows:
Snyk Security Scan configuration panel
-The following shows the same configuration once you have added it to your pipeline.
+The following shows the same configuration after you have added it to your pipeline.
diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/install-the-snyk-extension-for-your-azure-pipelines.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/install-the-snyk-extension-for-your-azure-pipelines.md
index 7860ef3f322b..7bafce7f3c71 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/install-the-snyk-extension-for-your-azure-pipelines.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/install-the-snyk-extension-for-your-azure-pipelines.md
@@ -13,7 +13,7 @@ To start using the Snyk task as part of your pipeline build, from the [Visual St
2. Token:
1. For **free plans**, navigate to your **General Account Settings** and find, copy, and save your personal API token.
2. For **paid plans**, navigate to the Organization where you want to integrate; then navigate to **Settings** to create a new service account token. Copy and save the new service account token.
-3. Access your Azure DevOps account and navigate to the **Extensions** > **Browse marketplace**.
+3. Access your Azure DevOps account and navigate to **Extensions** > **Browse marketplace**.
4. Search for the **Snyk Security Scan** extension and click **Get it free**.
5. Create a new **Service Connection** in your Project using **Project Settings** > **Pipelines** > **Service Connections**.
6. Select the **Snyk Authentication** service connection:
diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/regional-api-endpoints.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/regional-api-endpoints.md
index 7bcf9b3c0940..5e2c0fd82ff7 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/regional-api-endpoints.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/regional-api-endpoints.md
@@ -1,6 +1,6 @@
# Regional API endpoints
-By default, the task uses the [https://api.snyk.io](https://api.snyk.io) endpoint. To configure Snyk to use a different endpoint set a `SNYK_API` environment variable in the pipeline, for example, `https://api.eu.snyk.io`.
+By default, the task uses the [https://api.snyk.io](https://api.snyk.io) endpoint. To configure Snyk to use a different endpoint, set a `SNYK_API` environment variable in the pipeline, for example, `https://api.eu.snyk.io`.
For more information about environment configuration, see [Configure the Snyk CLI](../../snyk-cli/configure-the-snyk-cli/). For more details, see the [list of available regions on the Regional hosting and data residency page](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#available-snyk-regions).
diff --git a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/snyk-security-scan-task-parameters-and-values.md b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/snyk-security-scan-task-parameters-and-values.md
index 2825ac2223f5..3d886520db6d 100644
--- a/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/snyk-security-scan-task-parameters-and-values.md
+++ b/developer-tools/snyk-ci-cd-integrations/azure-pipelines-integration/snyk-security-scan-task-parameters-and-values.md
@@ -9,7 +9,7 @@ The following describes the Snyk task configuration fields on the configuration
**Default**: none\
**Type**: String / Azure Service Connection Endpoint of type SnykAuth / Snyk Authentication
-**Description**: The Azure DevOps service connection endpoint where your Snyk API token is defined. Your admin defines this within your Azure DevOps project settings, assigning it using a unique string in order to differentiate between different connections.
+**Description**: The Azure DevOps service connection endpoint where your Snyk API token is defined. Your admin defines this within your Azure DevOps project settings, assigning it using a unique string to differentiate between different connections.
The configuration panel displays all available Snyk service connections from a dropdown list like the following:
@@ -26,9 +26,9 @@ If multiple Snyk service connections are available from the dropdown list, ask y
**Description**: Determines the type of testing to perform, which also selects the dynamic fields to display as described on the rest of this page.
-* Specifying `app` will perform analysis of your application's open-source dependencies (SCA)
-* Specifying `container` will analyze container packages and detected application open-source packages (SCA)
-* Specifying `code` will perform static analysis (SAST) on source code.
+* Specifying `app` analyzes your application's open-source dependencies (SCA)
+* Specifying `container` analyzes container packages and detected application open-source packages (SCA)
+* Specifying `code` performs static analysis (SAST) on source code
## Field: Container Image Name
@@ -55,7 +55,7 @@ If multiple Snyk service connections are available from the dropdown list, ask y
**Default**: none\
**Type**: string
-**Description**: Applicable to application-type tests only. The path to the manifest file to be used by Snyk. Should be provided only if non-standard. This dynamic field appears when **What do you want to test** is set to **Application**.
+**Description**: Applicable to application-type tests only. The path to the manifest file for Snyk to use. Provide it only if non-standard. This dynamic field appears when **What do you want to test** is set to **Application**.
## Field: Testing severity threshold
@@ -91,7 +91,7 @@ If multiple Snyk service connections are available from the dropdown list, ask y
**Default**: true\
**Type**: Boolean
-**Description**: Specifies whether pipeline jobs should be failed or continued based on issues found by Snyk.
+**Description**: Specifies whether to fail or continue pipeline jobs based on issues found by Snyk.
## Field: Project name in Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/README.md b/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/README.md
index 133d664adc6f..e6c0c0c0ccea 100644
--- a/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/README.md
@@ -1,8 +1,8 @@
# Bitbucket Pipelines integration using a Snyk pipe
-Snyk integrates with Bitbucket Pipelines using a Snyk pipe, seamlessly scanning your application dependencies and Docker images for security vulnerabilities as part of the continuous integration/continuous delivery (CI/CD) workflow.
+Snyk integrates with Bitbucket Pipelines using a Snyk pipe, scanning your application dependencies and Docker images for security vulnerabilities as part of the continuous integration/continuous delivery (CI/CD) workflow.
-[Bitbucket Pipes](https://bitbucket.org/blog/meet-bitbucket-pipes-30-ways-to-automate-your-ci-cd-pipeline) enables users to customize and automate a Bitbucket Pipeline CI/CD workflow with a group of ready-to-use tasks that can be added inside of your pipelines by copying and pasting them from the Bitbucket interface.
+[Bitbucket Pipes](https://bitbucket.org/blog/meet-bitbucket-pipes-30-ways-to-automate-your-ci-cd-pipeline) lets you customize and automate a Bitbucket Pipeline CI/CD workflow with a group of ready-to-use tasks that you can add inside your pipelines by copying and pasting them from the Bitbucket interface.
With the Snyk pipe, you can quickly add Snyk scanning to your pipelines to test and monitor for vulnerabilities at different points in the CI/CD workflow, based on your configurations. Results are then displayed in the Bitbucket Pipelines output view and can also be monitored on the [Snyk Web UI](http://app.snyk.io).
diff --git a/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/migrating-to-bitbucket-pipelines-v1.0.0.md b/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/migrating-to-bitbucket-pipelines-v1.0.0.md
index d752a46656e3..fcde932db7a3 100644
--- a/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/migrating-to-bitbucket-pipelines-v1.0.0.md
+++ b/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/migrating-to-bitbucket-pipelines-v1.0.0.md
@@ -48,10 +48,10 @@ script:
The table that follows lists the Snyk CLI Docker images used in Bitbucket Pipelines < 1.0.0 and the equivalent Snyk images that can be used in Bitbucket Pipelines > 1.0.0.
{% hint style="info" %}
-Node.js 14 is installed in all Snyk CLI Docker images for installing the CLI. In comparison, NodeJS is installed only in Snyk images containing the `node` tag.
+Node.js 14 is installed in all Snyk CLI Docker images for installing the CLI. In comparison, Node.js is installed only in Snyk images containing the `node` tag.
{% endhint %}
-Note that the images will not be exactly like-for-like. Properties, including the base image, the installed Snyk CLI version, and others, will be different.
+Note that the images are not exactly like-for-like. Properties, including the base image, the installed Snyk CLI version, and others, differ.
However, for the purpose of Bitbucket Pipelines, they are functionally equivalent.
diff --git a/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/snyk-pipe-parameters-and-values-bitbucket-cloud.md b/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/snyk-pipe-parameters-and-values-bitbucket-cloud.md
index b06e08e87794..aa417b771a69 100644
--- a/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/snyk-pipe-parameters-and-values-bitbucket-cloud.md
+++ b/developer-tools/snyk-ci-cd-integrations/bitbucket-pipelines-integration-using-a-snyk-pipe/snyk-pipe-parameters-and-values-bitbucket-cloud.md
@@ -2,7 +2,7 @@
## Configure the Snyk pipe
-Configure the following Snyk pipe as part of a pipeline YAML file in order to include vulnerability scanning as part of your CI/CD workflow:
+Configure the following Snyk pipe as part of a pipeline YAML file to include vulnerability scanning as part of your CI/CD workflow:
```
- pipe: snyk/snyk-scan:1.0.0
diff --git a/developer-tools/snyk-ci-cd-integrations/circleci-integration-using-a-snyk-orb.md b/developer-tools/snyk-ci-cd-integrations/circleci-integration-using-a-snyk-orb.md
index bd22b938e99e..14c3580fa901 100644
--- a/developer-tools/snyk-ci-cd-integrations/circleci-integration-using-a-snyk-orb.md
+++ b/developer-tools/snyk-ci-cd-integrations/circleci-integration-using-a-snyk-orb.md
@@ -1,8 +1,8 @@
# CircleCI integration using a Snyk Orb
-Snyk integrates with [CircleCI](https://circleci.com) using a Snyk Orb, seamlessly scanning your application dependencies and Docker images for open-source security vulnerabilities as part of the CI/CD workflow.
+Snyk integrates with [CircleCI](https://circleci.com) using a Snyk Orb, scanning your application dependencies and Docker images for open-source security vulnerabilities as part of the CI/CD workflow.
-CircleCI enables users to easily create CI/CD workflows using a group of ready-to-use commands ([Orbs](https://circleci.com/orbs/)) that can be added to your configuration file.
+CircleCI lets you create CI/CD workflows using a group of ready-to-use commands ([Orbs](https://circleci.com/orbs/)) that you can add to your configuration file.
With the Snyk Orb, you can quickly add Snyk scanning to your CI/CD to test and monitor for open-source vulnerabilities based on your configurations. Results are then displayed on the CircleCI output view and can also be monitored on [snyk.io](http://app.snyk.io).
@@ -32,7 +32,7 @@ Optionally, if the build completes successfully and **MONITOR** is set to **True
1. Create a Snyk account and retrieve the **Snyk API token** from your **Account settings**.
2. Import the relevant repository into CircleCI.
-3. Go to `Settings -> Security -> Orb security settings` and ensure you allow `opt-in to third party Orbs`.
+3. Navigate to `Settings -> Security -> Orb security settings` and ensure you allow `opt-in to third party Orbs`.
4. Ensure your configuration (`config.yml`) file follows version 2.1.
5. Add the required environment variables to CircleCI, including the Snyk PAT or API token as `SNYK_TOKEN`.
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/README.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/README.md
index 69318e3a09bf..b1dc83825745 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/README.md
@@ -59,7 +59,7 @@ Examples follow of using a Snyk GitHub Action to test and monitor a Snyk Open So
You can find examples specific to each language, package manager, and process on the pages listed in [GitHub Actions for Open Source languages and package managers](./#github-actions-for-open-source-languages-and-package-managers) and [GitHub Actions for Snyk Container and Snyk Infrastructure as Code](./#github-actions-for-snyk-container-and-snyk-infrastructure-as-code).
-Note that GitHub Actions will not pass on secrets set in the repository to forks being used in pull requests; thus, the Snyk Actions that require the token will fail to run from a forked repository.
+Note that GitHub Actions does not pass on secrets set in the repository to forks used in pull requests; as a result, the Snyk Actions that require the token fail to run from a forked repository.
### Snyk test example
@@ -154,7 +154,7 @@ jobs:
sarif_file: snyk.sarif
```
-After you upload to GitHub Code Scanning support, you will see vulnerabilities on the GitHub Security tab as shown in the following screen image.
+After you upload to GitHub Code Scanning support, you see vulnerabilities on the GitHub Security tab as shown in the following screen image.
@@ -193,5 +193,5 @@ env:
Every Snyk account has this token. After you have created an account with Snyk, you can find the API token in one of two ways:
-1. In the UI, go to your Snyk account [settings page](https://app.snyk.io/account) and retrieve the API token, as explained on the page [Revoke and regenerate a Snyk API token](../../snyk-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token.md).
+1. In the UI, navigate to your Snyk account [settings page](https://app.snyk.io/account) and retrieve the API token, as explained on the page [Revoke and regenerate a Snyk API token](../../snyk-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token.md).
2. If you are using the [Snyk CLI](../../snyk-cli/getting-started-with-the-snyk-cli.md) locally, you can retrieve the API token by running `snyk config get api`.
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-docker-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-docker-action.md
index 1fb2b841c6a8..3b23f6e47c34 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-docker-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-docker-action.md
@@ -2,7 +2,7 @@
This page provides instructions for and examples of using the Snyk GitHub Action for [Docker](https://github.com/snyk/actions/tree/master/docker). For general instructions and information, see [GitHub Actions for Snyk setup and checking for vulnerabilities](./).
-In order to use the Docker Action, you must have a Snyk API token. See [Getting your Snyk token](./#getting-your-snyk-token), or you can [sign up for free](https://snyk.io/login).
+To use the Docker Action, you must have a Snyk API token. See [Getting your Snyk token](./#getting-your-snyk-token), or you can [sign up for free](https://snyk.io/login).
## Using the Snyk Docker Action to check for vulnerabilities
@@ -55,7 +55,7 @@ jobs:
## Uploading Snyk scan results to GitHub Code Scanning using the Snyk Docker Action
-The Docker Action also supports integrating with GitHub Code Scanning and can show issues in the GitHub Security tab. As long as you reference a Dockerfile with `--file=Dockerfile` in the `args`, a `snyk.sarif` file will be generated, which can be uploaded to GitHub Code Scanning.
+The Docker Action also supports integrating with GitHub Code Scanning and can show issues in the GitHub Security tab. As long as you reference a Dockerfile with `--file=Dockerfile` in the `args`, Snyk generates a `snyk.sarif` file, which you can upload to GitHub Code Scanning.
```yaml
name: Snyk Container
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-dotnet-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-dotnet-action.md
index 4c568a039d9e..1e4f44c6d02e 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-dotnet-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-dotnet-action.md
@@ -47,7 +47,7 @@ jobs:
```
{% hint style="info" %}
-It is required to restore the dependencies using `dotnet restore` or `nuget restore` before running the Snyk action
+You must restore the dependencies using `dotnet restore` or `nuget restore` before running the Snyk action
{% endhint %}
## Using the Snyk dotNET action to run snyk monitor
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-golang-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-golang-action.md
index f52a1b00e29b..0c654c07352f 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-golang-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-golang-action.md
@@ -20,7 +20,7 @@ jobs:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
```
-You can use the Snyk Golang Action to check for only high severity vulnerabilitie**s** as follows:
+You can use the Snyk Golang Action to check for only high severity vulnerabilities as follows:
```yaml
name: Example workflow for Golang using Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-gradle-jdk14-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-gradle-jdk14-action.md
index 285b1472bdd8..06d45e488c00 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-gradle-jdk14-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-gradle-jdk14-action.md
@@ -20,7 +20,7 @@ jobs:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
```
-You can use the Snyk Gradle (jdk11) action to check for only high severity vulnerabilities as follows:
+You can use the Snyk Gradle (jdk14) action to check for only high severity vulnerabilities as follows:
```yaml
name: Example workflow for Gradle (jdk14) using Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-infrastructure-as-code-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-infrastructure-as-code-action.md
index 514ec719b7ff..73c80e1696a4 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-infrastructure-as-code-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-infrastructure-as-code-action.md
@@ -2,7 +2,7 @@
This page provides instructions for and examples of using the Snyk GitHub Action for [Infrastructure as Code](https://github.com/snyk/actions/tree/master/iac). For general instructions and information, see [GitHub Actions for Snyk setup and checking for vulnerabilities](./).
-In order to use the Snyk Infrastructure as Code Test Action, you must have a Snyk API token. See [Getting your Snyk token](./#getting-your-snyk-token), or you can [sign up for free](https://snyk.io/login).
+To use the Snyk Infrastructure as Code Test Action, you must have a Snyk API token. See [Getting your Snyk token](./#getting-your-snyk-token), or you can [sign up for free](https://snyk.io/login).
## Using the Snyk Infrastructure as Code Action to check for vulnerabilities
@@ -24,7 +24,7 @@ jobs:
## Snyk Infrastructure as Code Action properties
-The Snyk Infrastructure as Code Action has properties thatwhich are passed to the underlying image. These are passed to the action using `with`:
+The Snyk Infrastructure as Code Action has properties that are passed to the underlying image. These are passed to the action using `with`:
| Property | Default | Description |
| --------- | -------- | ----------------------------------------------------------------- |
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-3-jdk-11-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-3-jdk-11-action.md
index a48e2e28e5d0..34e991e8c77a 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-3-jdk-11-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-3-jdk-11-action.md
@@ -20,7 +20,7 @@ jobs:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
```
-You can use the Snyk Snyk Maven (3-jdk-11) action to check for only high severity vulnerabilities as follows:
+You can use the Snyk Maven (3-jdk-11) action to check for only high severity vulnerabilities as follows:
```yaml
name: Example workflow for Maven (3-jdk-11) using Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-action.md
index 9566980df378..d33c1fa2a81b 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-maven-action.md
@@ -20,7 +20,7 @@ jobs:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
```
-You can use the Snyk Snyk Maven action to check for only high severity vulnerabilities as follows:
+You can use the Snyk Maven action to check for only high severity vulnerabilities as follows:
```yaml
name: Example workflow for Maven using Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.6-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.6-action.md
index 40037a2a93af..a16b94226450 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.6-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.6-action.md
@@ -1,7 +1,7 @@
# Snyk Python-3.6 action
{% hint style="warning" %}
-This image has been removed on 12 Aug 2024. It is highly recommended that users consider migrating to a newer action to ensure continued support and up-to-date functionality. If you are currently using this image, plan an upgrade as soon as possible to avoid any disruptions in your workflow post this date.
+This image was removed on 12 Aug 2024. Migrate to a newer action to ensure continued support and up-to-date functionality. If you are using this image, plan an upgrade as soon as possible to avoid disruptions in your workflow after this date.
{% endhint %}
This page provides examples of using the Snyk GitHub action for [Python (3.6)](https://github.com/snyk/actions/tree/master/python-3.6). For instructions on using the action and further information, see [GitHub Actions for Snyk setup and checking for vulnerabilities](./).
@@ -18,7 +18,7 @@ The Python image checks and installs dependencies only if the manifest files are
* If pipenv is present on the current path, and Snyk finds a `Pipfile` without a `Pipfile.lock`, then Snyk runs `pipenv update`.
* If `pyproject.toml` is present in the current path and Snyk does not find `poetry.lock` then Snyk runs `pip install poetry`.
-If manifest files are present under any location other root then they must be installed prior to running Snyk.
+If manifest files are present under any location other than the root, you must install them before running Snyk.
You can use the Snyk Python (3.6) action to check for vulnerabilities as follows:
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.7-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.7-action.md
index f59af7688e71..d0b26cca1ef2 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.7-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.7-action.md
@@ -1,7 +1,7 @@
# Snyk Python-3.7 action
{% hint style="warning" %}
-This image has been removed on 12 Aug 2024. It is highly recommended that users consider migrating to a newer action to ensure continued support and up-to-date functionality. If you are currently using this image, plan an upgrade as soon as possible to avoid any disruptions in your workflow after this date.
+This image was removed on 12 Aug 2024. Migrate to a newer action to ensure continued support and up-to-date functionality. If you are using this image, plan an upgrade as soon as possible to avoid disruptions in your workflow after this date.
{% endhint %}
This page provides examples of using the Snyk GitHub Action for [Python (3.7)](https://github.com/snyk/actions/tree/master/python-3.7). For instructions on using the action and further information, see [GitHub Actions for Snyk setup and checking for vulnerabilities](./).
@@ -18,7 +18,7 @@ The Python image checks and installs dependencies only if the manifest files are
* If pipenv is present on the current path, and Snyk finds a `Pipfile` without a `Pipfile.lock`, then Snyk runs `pipenv update`.
* If `pyproject.toml` is present in the current path and Snyk does not find `poetry.lock` then Snyk runs `pip install poetry`.
-If manifest files are present under any location other than the root, then they must be installed prior to running Snyk.
+If manifest files are present under any location other than the root, you must install them before running Snyk.
You can use the Snyk Python (3.7) Action to check for vulnerabilities as follows:
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.8-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.8-action.md
index 2fd18eece5ac..5f7dce0065d6 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.8-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-3.8-action.md
@@ -14,7 +14,7 @@ The Python image checks and installs dependencies only if the manifest files are
* If pipenv is present on the current path, and Snyk finds a `Pipfile` without a `Pipfile.lock`, then Snyk runs `pipenv update`.
* If `pyproject.toml` is present in the current path and Snyk does not find `poetry.lock` then Snyk runs `pip install poetry`.
-If manifest files are present under any location other than the root then they must be installed prior to running Snyk.
+If manifest files are present under any location other than the root, you must install them before running Snyk.
You can use the Snyk Python Action (3.8) to check for vulnerabilities as follows:
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-action.md
index a7256e0e6e60..004ed3f9c36f 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-python-action.md
@@ -14,7 +14,7 @@ The Python image checks and installs dependencies only if the manifest files are
* If pipenv is present on the current path, and Snyk finds a `Pipfile` without a `Pipfile.lock`, then Snyk runs `pipenv update`.
* If `pyproject.toml` is present in the current path and Snyk does not find `poetry.lock` then Snyk runs `pip install poetry`.
-If manifest files are present under any location other than the root, then they must be installed prior to running Snyk.
+If manifest files are present under any location other than the root, you must install them before running Snyk.
You can use the Snyk Python action to check for vulnerabilities as follows:
@@ -32,7 +32,7 @@ jobs:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
```
-You can use the Snyk CocoaPods action to check for only high severity vulnerabilities as follows:
+You can use the Snyk Python action to check for only high severity vulnerabilities as follows:
```yaml
name: Example workflow for Python using Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-scala-action.md b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-scala-action.md
index 0ddd51227f62..3e5cb13c9850 100644
--- a/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-scala-action.md
+++ b/developer-tools/snyk-ci-cd-integrations/github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-scala-action.md
@@ -1,7 +1,7 @@
# Snyk Scala action
{% hint style="warning" %}
-This image has been removed on 12 Aug 2024. It is highly recommended that users consider migrating to a newer action to ensure continued support and up-to-date functionality. If you are currently using this image, plan an upgrade as soon as possible to avoid any disruptions in your workflow post this date.
+This image was removed on 12 Aug 2024. Migrate to a newer action to ensure continued support and up-to-date functionality. If you are using this image, plan an upgrade as soon as possible to avoid disruptions in your workflow after this date.
{% endhint %}
This page provides examples of using the Snyk GitHub Action for [Scala](https://github.com/snyk/actions/tree/master/scala). For instructions on using the action and further information, see [GitHub Actions for Snyk setup and checking for vulnerabilities](./).
diff --git a/developer-tools/snyk-ci-cd-integrations/jenkins-plugin-integration-with-snyk.md b/developer-tools/snyk-ci-cd-integrations/jenkins-plugin-integration-with-snyk.md
index 786118e3aad7..e42674491bd8 100644
--- a/developer-tools/snyk-ci-cd-integrations/jenkins-plugin-integration-with-snyk.md
+++ b/developer-tools/snyk-ci-cd-integrations/jenkins-plugin-integration-with-snyk.md
@@ -51,7 +51,7 @@ The plugin can download the latest version of Snyk binaries and keep them up-to-
If you are in a region other than `SNYK-US-01`, which uses the `https://api.snyk.io` endpoint, configure Snyk to use a different endpoint by changing the `SNYK_API` environment variable:
-* Go to **Manage Jenkins** > **System**.
+* Navigate to **Manage Jenkins** > **System**.
* Under **Global Properties**, check the **Environment** variables option.
* Click **Add**.
* Set the name to `SNYK_API` and the value to the custom endpoint.
diff --git a/developer-tools/snyk-ci-cd-integrations/maven-plugin-integration-with-snyk.md b/developer-tools/snyk-ci-cd-integrations/maven-plugin-integration-with-snyk.md
index 0342ded619a6..898fc74676df 100644
--- a/developer-tools/snyk-ci-cd-integrations/maven-plugin-integration-with-snyk.md
+++ b/developer-tools/snyk-ci-cd-integrations/maven-plugin-integration-with-snyk.md
@@ -1,6 +1,6 @@
# Maven plugin integration with Snyk
-Snyk offers a [Maven plugin](https://github.com/snyk/snyk-maven-plugin) based on the [Snyk CLI](../snyk-cli/). This plugin allows you to scan and monitor your Maven dependencies for vulnerabilities.
+Snyk offers a [Maven plugin](https://github.com/snyk/snyk-maven-plugin) based on the [Snyk CLI](../snyk-cli/). This plugin lets you scan and monitor your Maven dependencies for vulnerabilities.
See all releases in the [Maven Central Repository](https://search.maven.org/artifact/io.snyk/snyk-maven-plugin).
@@ -84,7 +84,7 @@ Scan your Project's dependencies and provide a list of vulnerabilities if any ar
Default Phase: `install`
-Take a snapshot of your Project's dependency tree and monitor it on [snyk.io](https://snyk.io). You wil be alerted when new relevant vulnerabilities, updates, or patches are disclosed.
+Take a snapshot of your Project's dependency tree and monitor it on [snyk.io](https://snyk.io). Snyk alerts you when new relevant vulnerabilities, updates, or patches are disclosed.
## Configuration for the Maven plugin
@@ -112,7 +112,7 @@ When you are running `mvn`, you can also use `-Dsnyk.skip` to enable this behavi
Default: `true`
-When this variable is set to `true`, if the Snyk CLI tool indicates that action is required to remedy a security issue, the Maven build will be considered failed. When this variable is set to `false` , the build will continue even if action is required.
+When this variable is set to `true`, if the Snyk CLI tool indicates that action is required to remedy a security issue, the Maven build fails. When this variable is set to `false`, the build continues even if action is required.
### `args` \[array\]
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/README.md b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/README.md
index 882963744a01..0d9207ae2980 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/README.md
@@ -4,7 +4,7 @@ When you decide to use a Snyk CI/CD Integration, you typically adopt the integra
Then, [set up](ci-cd-setup.md) the CI/CD Integration.
-You will be using `snyk test` and `snyk monitor` in the CI/CD integration. [See Snyk test and snyk monitor in CI/CD integration](snyk-test-and-snyk-monitor-in-ci-cd-integration.md).
+You use `snyk test` and `snyk monitor` in the CI/CD integration. [See Snyk test and snyk monitor in CI/CD integration](snyk-test-and-snyk-monitor-in-ci-cd-integration.md).
Review the CI/CD strategies for the code you are scanning:
@@ -12,4 +12,4 @@ Review the CI/CD strategies for the code you are scanning:
* [Snyk Container-specific CI/CD strategies](snyk-container-specific-ci-cd-strategies.md)
* [Snyk IaC-specific CI/CD strategies](snyk-iac-specific-ci-cd-strategies.md)
-Troubleshooting information and a list of resources are provided; see [CI/CD troubleshooting and resources](ci-cd-troubleshooting-and-resources.md).
+For troubleshooting information and a list of resources, see [CI/CD troubleshooting and resources](ci-cd-troubleshooting-and-resources.md).
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-adoption-and-deployment.md b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-adoption-and-deployment.md
index 1f93808e83a4..fd0e80fa0b71 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-adoption-and-deployment.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-adoption-and-deployment.md
@@ -16,7 +16,7 @@ A typical approach is to use Snyk results to expose vulnerabilities during the d
When you first implement Snyk in your pipeline, Snyk recommends using only the `snyk monitor` command. If you use one of the Snyk CI plugins, Snyk recommends that you configure the plugin to NOT fail the build.
-This is because all Projects have vulnerabilities, and after you set Snyk to fail the build, every build fails because of Snyk. This may cause problems with your team being quickly overwhelmed with failure messages.
+This is because all Projects have vulnerabilities, and after you set Snyk to fail the build, every build fails because of Snyk. This can overwhelm your team with failure messages.
Using `snyk monitor` to expose results provides information without disrupting processes.
@@ -52,7 +52,7 @@ Snyk native plugins are available for most common CI/CD tools. You can use these
### **Deploy the Snyk CLI using the npm method**
-Follow steps similar to those for [installing the CLI](../../snyk-cli/install-the-snyk-cli/) locally. You must be able to run an npm command in the pipeline script. This method has the advantage of completely aligning with the CLI experience so that you can easily troubleshoot and configure.
+Follow steps similar to those for [installing the CLI](../../snyk-cli/install-the-snyk-cli/) locally. You must be able to run an npm command in the pipeline script. This method has the advantage of completely aligning with the CLI experience so that you can troubleshoot and configure.
### **Deploy the Snyk CLI binary version**
@@ -64,7 +64,7 @@ Snyk has Linux, Windows, and other versions.
### **Deploy a Snyk container**
-You may also deploy Snyk in your pipeline using one of the Snyk images in [Docker Hub](https://hub.docker.com/r/snyk/snyk).
+You can also deploy Snyk in your pipeline using one of the Snyk images in [Docker Hub](https://hub.docker.com/r/snyk/snyk).
## Examples of Snyk CI/CD Integrations
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-setup.md b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-setup.md
index eb0436480a59..f1670a96783b 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-setup.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/ci-cd-setup.md
@@ -31,12 +31,12 @@ For instructions on authenticating with Snyk, see [Authenticate the CLI with you
Snyk supports the following approaches to add tests to a build pipeline:
* **Snyk integration plugins**: Snyk provides pre-built plugins for several CI servers, including [Jenkins](../jenkins-plugin-integration-with-snyk.md), [Team City](../teamcity-jetbrains-integration-using-the-snyk-security-plugin/), [Bitbucket Pipelines](../bitbucket-pipelines-integration-using-a-snyk-pipe/), and [Azure Pipelines](../azure-pipelines-integration/).
-* **Snyk CLI**: Teams with more complex workflows or using a build system without a Snyk pre-built plugin, can use the Snyk CLI during CI/CD setups. For more informationm, see [Snyk test and snyk monitor in CI/CD integration](snyk-test-and-snyk-monitor-in-ci-cd-integration.md).
+* **Snyk CLI**: Teams with more complex workflows or using a build system without a Snyk pre-built plugin, can use the Snyk CLI during CI/CD setups. For more information, see [Snyk test and snyk monitor in CI/CD integration](snyk-test-and-snyk-monitor-in-ci-cd-integration.md).
* **Snyk API**: For teams with complex requirements, Snyk provides an API, which you can use to automate functions including initiating scans, onboarding new Projects, and testing arbitrary libraries. See the [Snyk API documentation](../../snyk-api/snyk-api.md) for details.
## Setting up CI/CD using Snyk CLI
-The Snyk CLI is a NodeJS application that can be scripted directly by developers for easy integration into most CI/CD environments. The Snyk CLI is available as an npm application, pre-packaged binary, or container image. For more information, see [Install or update the Snyk CLI](../../snyk-cli/install-the-snyk-cli/).
+The Snyk CLI is a Node.js application that developers can script directly to integrate into most CI/CD environments. The Snyk CLI is available as an npm application, pre-packaged binary, or container image. For more information, see [Install or update the Snyk CLI](../../snyk-cli/install-the-snyk-cli/).
The Snyk CLI can be configured to:
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-container-specific-ci-cd-strategies.md b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-container-specific-ci-cd-strategies.md
index 80dbec48e6b6..d9c86be254d1 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-container-specific-ci-cd-strategies.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-container-specific-ci-cd-strategies.md
@@ -33,7 +33,7 @@ Snyk can provide help as follows:
## Recommendations for integration with container images
-* Regardless of how you integrate with container images during CI, run a Snyk Container scan as a separate build step from your Snyk Open Source (application SCA) test. This allows you to isolate build failures to vulnerabilities within either the container or OS layer, or the application layer, respectively. This also enables more easily containerized build tasks.
+* Regardless of how you integrate with container images during CI, run a Snyk Container scan as a separate build step from your Snyk Open Source (application SCA) test. This lets you isolate build failures to vulnerabilities within either the container or OS layer, or the application layer, respectively. This also makes build tasks simpler to containerize.
* Use CLI options like `--fail-on` and `--severity-threshold` to customize the failure status for the build task. For more advanced testing, you can use `--json` to generate a JSON file containing the full vulnerability report and set your own build failure status based on the JSON data.
* Pass `--exclude-base-image-vulns` to report only vulnerabilities introduced by your user layers, rather than vulnerabilities that come from the base image of the container, that is, the image you specify in the `FROM` line in the Dockerfile.
* Run `snyk container monitor` following `snyk container test`, or check the **Monitor** box on your plugin settings, to keep a record of the bill of materials for the container within the Snyk UI and proactively monitor for new vulnerabilities on a daily basis. This is useful when pushing new releases into production environments. You can use `--project-name` to specify a unique identifier for the release to ensure production containers are tracked separately from others in your build process.
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-open-source-specific-ci-cd-strategies.md b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-open-source-specific-ci-cd-strategies.md
index ce80cd0d90f9..fc27037db80c 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-open-source-specific-ci-cd-strategies.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-open-source-specific-ci-cd-strategies.md
@@ -26,7 +26,7 @@ snyk test --file=sln/.sln
## Yarn
-For Yarn workspaces, use the `--yarn-workspaces` option to `test` and `monitor` your packages. The root lockfile will be referenced for scans of all the packages. Use the `--detection-depth` option to find sub-folders that are not auto-discovered by default.
+For Yarn workspaces, use the `--yarn-workspaces` option to `test` and `monitor` your packages. Snyk references the root lockfile for scans of all the packages. Use the `--detection-depth` option to find sub-folders that are not auto-discovered by default.
{% hint style="info" %}
Support for Yarn workspaces is available for the `snyk test` and `snyk monitor` commands only.
@@ -53,7 +53,7 @@ Some customers have complex Projects, with multiple languages, package managers,
```
snyk test --file=package.json
```
-* After you install the dependencies of each Project, make a similar call pointing to the specific artifact, such as `pom.xml`. This is fast and efficient, but can be difficult to scale, especially if you are not familiar with the Project.
+* After you install the dependencies of each Project, make a similar call pointing to the specific artifact, such as `pom.xml`. This is efficient, but can be difficult to scale, especially if you are not familiar with the Project.
* For most Gradle Projects, using `--all-projects` works, as it invokes Gradle-specific options behind the scenes in the form of `snyk test --file=build.gradle --all-sub-projects` when it finds the build file as part of the `--all-projects` search.
* Gradle may require additional configuration parameters. If so, target the other artifacts by using `--file=` for each manifest in the other languages and package managers. You must then use `--all-sub-projects` and potentially `--configuration-matching` to scan a complex Gradle Project.
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-test-and-snyk-monitor-in-ci-cd-integration.md b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-test-and-snyk-monitor-in-ci-cd-integration.md
index e880ae9ac8a8..624a8eb835d0 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-test-and-snyk-monitor-in-ci-cd-integration.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-ci-cd-integration-deployment-and-strategies/snyk-test-and-snyk-monitor-in-ci-cd-integration.md
@@ -34,7 +34,7 @@ Among the most common options used in a CI/CD integration are the following:
`-p`: Prune dependency trees, removing duplicate sub-dependencies. Continues to find all vulnerabilities, but may not find all of the vulnerable paths.
-\--org=\: Specify the `ORG_ID` to run Snyk commands for a specific Organization. This influences where new Projects are created after running the `monitor` command, some availabilty of features, and private test limits. If you have multiple Organizations, you can set a default from the CLI using:
+\--org=\: Specify the `ORG_ID` to run Snyk commands for a specific Organization. This influences where new Projects are created after running the `monitor` command, some availability of features, and private test limits. If you have multiple Organizations, you can set a default from the CLI using:
```
$ snyk config set org=
@@ -68,6 +68,6 @@ You can use JSON output from Snyk commands to create custom test reports as buil
## Creating work items for new vulnerabilities
-Snyk allows you to automatically create new work items in JIRA; for details, see the [Jira integration ](../../integrations/jira-and-slack-integrations/jira-integration.md)documentation. You can customize this code for your specific requirements or adapt it to work with other work management systems.
+Snyk lets you automatically create new work items in Jira. For details, see the [Jira integration ](../../integrations/jira-and-slack-integrations/jira-integration.md)documentation. You can customize this code for your specific requirements or adapt it to work with other work management systems.
See [Jira tickets for new vulns](https://github.com/snyk-tech-services/jira-tickets-for-new-vulns) to get started. You can also use the API endpoints [Create jira issue](../../snyk-api/reference/jira-v1.md#org-orgid-project-projectid-issue-issueid-jira-issue) and [List all jira issues](../../snyk-api/reference/jira-v1.md#org-orgid-project-projectid-jira-issues).
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-images-and-eol-image-policy.md b/developer-tools/snyk-ci-cd-integrations/snyk-images-and-eol-image-policy.md
index 286bf21d16ec..9d4f02477557 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-images-and-eol-image-policy.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-images-and-eol-image-policy.md
@@ -4,11 +4,11 @@ This page outlines the Snyk end-of-life (EOL) policy for images provided by the
## Summary of EOL image policy
-As part of Snyk's commitment to helping customers ship secure code, Snyk will provide images that contain software supported by its upstream vendor as a convenience.
+As part of the Snyk commitment to helping customers ship secure code, Snyk provides images that contain software supported by its upstream vendor as a convenience.
### Image maintenance
-As a general practice, Snyk does not remove images once they are published. However, Snyk will not build, maintain, or ship images based on EOL software.
+As a general practice, Snyk does not remove images after they are published. However, Snyk does not build, maintain, or ship images based on EOL software.
### User responsibility
@@ -16,17 +16,17 @@ To ensure you are using the most current and secure images, monitor the software
### Example of an EOL image
-For example, Snyk stopped building images based on Python 3.7, which is not actively supported and does not receive security updates from Python. Thus users should migrate to Python 3.8 or higher.
+For example, Snyk stopped building images based on Python 3.7, which is not actively supported and does not receive security updates from Python. Migrate to Python 3.8 or higher.
## Snyk Images lifecycle
### Annual review
-Snyk conducts an annual review of images. Images containing software that has reached its end-of-life (EOL) status will not be rebuilt or updated. This means the CLI and base image will no longer receive updates, bug fixes, or security patches.
+Snyk conducts an annual review of images. Snyk does not rebuild or update images containing software that has reached its end-of-life (EOL) status. This means the CLI and base image no longer receive updates, bug fixes, or security patches.
### Image availability
-Snyk does not remove images from Docker Hub once the images are published. Users should check the [endoflife.date](https://endoflife.date/) website to ensure their build pipelines are not using EOL software. Snyk will not issue warnings about an image becoming EOL.
+Snyk does not remove images from Docker Hub after the images are published. Check the [endoflife.date](https://endoflife.date/) website to ensure your build pipelines are not using EOL software. Snyk does not issue warnings about an image becoming EOL.
Snyk follows a phased approach to building, maintaining, and discontinuing maintenance of an image. The phases are [Creation](snyk-images-and-eol-image-policy.md#creation-phase), [Active support and maintenance](snyk-images-and-eol-image-policy.md#active-support-and-maintenance-phase), and [End of Life (EOL)](snyk-images-and-eol-image-policy.md#end-of-life-eol-phase).
@@ -65,8 +65,8 @@ As long as the vendor supports the base image, the Snyk image will include the l
### End of Life (EOL) phase
-After the vendor software reaches EOL, that is, stops receiving active support and security updates, Snyk will also stop building and maintaining the impacted image.
+After the vendor software reaches EOL, that is, stops receiving active support and security updates, Snyk also stops building and maintaining the impacted image.
-Snyk will update the `snyk-images` repository and user documentation to remove the EOL images from the list of supported images.
+Snyk updates the `snyk-images` repository and user documentation to remove the EOL images from the list of supported images.
For more information, see the lists of [currently supported](https://github.com/snyk/snyk-images?tab=readme-ov-file#current-images) and [unsupported ](https://github.com/snyk/snyk-images?tab=readme-ov-file#vendor-unsupported-base-images)images in the [`snyk-images` repository](https://github.com/snyk/snyk-images).
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/README.md b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/README.md
index a45efff178de..c5a7126efaca 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/README.md
@@ -2,7 +2,7 @@
Guides are available for the following:
-* [Snyk images migration](snyk-images-migration.md)
-* [Circle CI migration](circleci-migration.md)
-* [BitBukdet Pipelines migration](bitbucket-pipelines-migration.md)
-* [GitHub actions migration](github-actions-migration.md)
+* [Snyk Images migration](snyk-images-migration.md)
+* [CircleCI migration](circleci-migration.md)
+* [Bitbucket Pipelines migration](bitbucket-pipelines-migration.md)
+* [GitHub Actions migration](github-actions-migration.md)
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/bitbucket-pipelines-migration.md b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/bitbucket-pipelines-migration.md
index 6184f2bb1840..68522150c0af 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/bitbucket-pipelines-migration.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/bitbucket-pipelines-migration.md
@@ -2,7 +2,7 @@
## For users of `snyk/snyk-scan` < v1.0.0
-`snyk/snyk-scan` \= v1.0.0
@@ -12,19 +12,19 @@ See the [upgrade guide in Snyk Docs](../bitbucket-pipelines-integration-using-a-
Users can create their own custom images to use. This option is available for `snyk/snyk-scan` >= v1.0.0 only. For details, see [User-defined custom images for CLI.](../user-defined-custom-images-for-cli.md)
-Creating a custom image should guarantee compatibility with your system. However, there are alternative images to which you can upgrade if creating a custom image is not possible.
+Creating a custom image guarantees compatibility with your system. However, there are alternative images to which you can upgrade if creating a custom image is not possible.
### Upgrade to a supported Snyk Image
-After you have validated that you are using a Snyk Image that will be removed, as outlined [for users of `snyk/snyk-scan` < v1.0.0](bitbucket-pipelines-migration.md#users-using-snyk-snyk-scan-less-than-v1.0.0), refer to the [Snyk images migration](snyk-images-migration.md) guidelines to view upgrade paths for your configuration.
+After you have validated that you are using a Snyk Image that Snyk will remove, as outlined [for users of `snyk/snyk-scan` < v1.0.0](bitbucket-pipelines-migration.md#users-using-snyk-snyk-scan-less-than-v1.0.0), refer to the [Snyk Images migration](snyk-images-migration.md) guidelines to view upgrade paths for your configuration.
{% hint style="info" %}
-Remember to use pinned versions where available for better stability. for example, `snyk/snyk:dotnet-8.0` is preferable to `snyk/snyk:dotnet`
+Remember to use pinned versions where available for better stability. For example, `snyk/snyk:dotnet-8.0` is preferable to `snyk/snyk:dotnet`
{% endhint %}
An example follows of upgrading to a supported Snyk Image.
-In the example `bitbucket-pipeline.yml` configuration that follows, a Snyk image is configured that will be removed on 12 Aug 2024:
+The following example `bitbucket-pipeline.yml` configuration uses a Snyk image that Snyk will remove on 12 Aug 2024:
```yaml
# Example bitbucket-pipelines.yml using `snyk/snyk:node-16` Snyk Image
@@ -55,7 +55,7 @@ pipelines:
DEBUG: "true" # Optional
```
-Following the [Snyk images migration](snyk-images-migration.md) guidelines, you can upgrade to a supported Snyk Image as shown here:
+Following the [Snyk Images migration](snyk-images-migration.md) guidelines, you can upgrade to a supported Snyk Image as shown here:
```yaml
# Upgrading to supported Snyk Image `snyk/snyk:node-22`
@@ -91,7 +91,7 @@ pipelines:
If you do not want to use the Bitbucket `snyk/snyk-scan` integration, you have the option to install and use the Snyk CLI directly.
{% hint style="info" %}
-If you use this option, you will be unable to use integration features such as Code Insight Results
+If you use this option, you cannot use integration features such as Code Insight Results
{% endhint %}
The following example shows using the CLI directly.
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/circleci-migration.md b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/circleci-migration.md
index a3b6c14f9f6e..17cf2b8ace7d 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/circleci-migration.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/circleci-migration.md
@@ -4,9 +4,9 @@ This page explains how to transition away from affected jobs.
## Updating snyk orb and using `iac test`
-Customers using the `scan-iac` job will need to switch to using `snyk/scan` with the `iac test` command. For an example, see the [IaC scanning examples](https://github.com/snyk/snyk-orb/blob/v2.0.0/src/examples/quickstart-iac-scanning.yml) in the snyk-orb repository.
+Customers using the `scan-iac` job must switch to using `snyk/scan` with the `iac test` command. For an example, see the [IaC scanning examples](https://github.com/snyk/snyk-orb/blob/v2.0.0/src/examples/quickstart-iac-scanning.yml) in the snyk-orb repository.
-It is important to update the version of the snyk orb used to the latest version by updating the circleci config files. Currently, the latest Snyk orb is `snyk/snyk@2.1.0` .
+It is important to update the version of the snyk orb used to the latest version by updating the circleci config files. The latest Snyk orb is `snyk/snyk@2.1.0` .
## Use the Snyk orb to only install the Snyk CLI, and then run the Snyk CLI commands in your own steps
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/github-actions-migration.md b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/github-actions-migration.md
index 3a9bae6095e2..fb4782f46ff4 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/github-actions-migration.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/github-actions-migration.md
@@ -1,6 +1,6 @@
# GitHub actions migration
-This page explains how to transition away from affected GitHub actions
+This page explains how to transition away from affected GitHub Actions.
Snyk recommends that you update the affected workflows to use a newer action that is not slated for removal.
@@ -97,11 +97,11 @@ jobs:
## Alternative (b) create your own custom actions
-Snyk customers who prefer to move away from pre-built actions provided by Snyk can create custom actions tailored to their specific needs. This approach allows for greater customization and control over the actions used in their workflows.
+Snyk customers who prefer to move away from pre-built actions provided by Snyk can create custom actions tailored to their specific needs. This approach gives you greater customization and control over the actions used in their workflows.
By creating your own actions, you can avoid the effects of future cleanup and removal events when images and actions lose vendor support.
-### Leveraging the [Snyk Setup Action](https://github.com/snyk/actions/tree/master/setup)
+### Use the [Snyk Setup Action](https://github.com/snyk/actions/tree/master/setup)
This [action](../github-actions-for-snyk-setup-and-checking-for-vulnerabilities/snyk-setup-action.md) offers a versatile method of incorporating Snyk into your workflows effectively.
@@ -113,7 +113,7 @@ Consider using this action when:
### Direct CLI Installation
-Another option is to install and use the Snyk CLI directly in your GitHub Actions workflow. This method allows you to skip the requirement of dedicated GitHub Actions integration.
+Another option is to install and use the Snyk CLI directly in your GitHub Actions workflow. This method lets you skip the requirement of dedicated GitHub Actions integration.
```yaml
name: Example workflow using Snyk
diff --git a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/snyk-images-migration.md b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/snyk-images-migration.md
index e331261b53ba..8b6f5e0c1e02 100644
--- a/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/snyk-images-migration.md
+++ b/developer-tools/snyk-ci-cd-integrations/snyk-images-guides-to-migration/snyk-images-migration.md
@@ -6,7 +6,7 @@ description: This page explains how to transition away from affected images.
You can [create your own custom images](../user-defined-custom-images-for-cli.md) to use. This option is available for any user affected by the removal of the Snyk Images listed on this page.
-Creating a custom image is the preferred solution, as it should guarantee compatibility with your system. However, if you cannot create a custom image, you can use an available alternative image.
+Creating a custom image is the preferred solution, as it guarantees compatibility with your system. However, if you cannot create a custom image, you can use an available alternative image.
{% hint style="info" %}
Snyk recommends using a pinned version of a software package unless stated otherwise.
@@ -14,7 +14,7 @@ Snyk recommends using a pinned version of a software package unless stated other
## snyk/snyk:docker-\*
-See the following table for the `snyk/snyk:docker-*` images to be removed
+See the following table for the `snyk/snyk:docker-*` images Snyk will remove.
| Image | Based on |
| ---------------------- | ------------ |
@@ -32,7 +32,7 @@ Users affected by the removal of these images can update to the following images
## snyk/snyk:golang-\*
-See the following table for the `snyk/snyk:golang-*` images to be removed.
+See the following table for the `snyk/snyk:golang-*` images Snyk will remove.
| Image | Based on |
| --------------------- | ----------- |
@@ -53,12 +53,12 @@ Users affected by the removal of these images can update to the following images
* `snyk/snyk:golang-1.22`
{% hint style="info" %}
-It is recommended to use a pinned Golang version such as `snyk/snyk:golang-1.22` instead of `snyk/snyk:golang,` which is based on Golang latest.
+Snyk recommends using a pinned Golang version such as `snyk/snyk:golang-1.22` instead of `snyk/snyk:golang,` which is based on Golang latest.
{% endhint %}
## snyk/snyk:gradle-\*
-See the following table for the `snyk/snyk:gradle-*` images to be removed.
+See the following table for the `snyk/snyk:gradle-*` images Snyk will remove.
| Image | Based on |
| -------------------------- | ---------------- |
@@ -89,7 +89,7 @@ Users affected by the removal of these images can update to the following images
## snyk/snyk:maven-3-jdk-19
-`snyk/snyk:maven-3-jdk-19` will be removed from Docker. Users affected by this removal can update to the following images:
+Snyk will remove `snyk/snyk:maven-3-jdk-19` from Docker. Users affected by this removal can update to the following images:
* `snyk/snyk:maven`
* `snyk/snyk:maven-3-jdk-11`
@@ -105,7 +105,7 @@ Users affected by the removal of these images can update to the following images
## snyk/snyk:dotnet-\*
-See the following table for the `snyk/snyk:dotnet-*` images to be removed.
+See the following table for the `snyk/snyk:dotnet-*` images Snyk will remove.
| Image | Based on |
| -------------------- | ------------------------------------- |
@@ -120,12 +120,12 @@ Users affected by the removal of these images can update to the following images
* `snyk/snyk:dotnet-8.0`
{% hint style="info" %}
-It is recommended to use the pinned version `snyk/snyk:dotnet-8.0,` which is based on the active LTS version of .NET, 8.0 at the time of publication.
+Snyk recommends using the pinned version `snyk/snyk:dotnet-8.0,` which is based on the active LTS version of .NET, 8.0 at the time of publication.
{% endhint %}
## snyk/snyk:node-\*
-See the following table for the `snyk/snyk:node-*` images to be removed.
+See the following table for the `snyk/snyk:node-*` images Snyk will remove.
| Image | Based on |
| ----------------- | -------- |
@@ -145,12 +145,12 @@ Users affected by the removal of these images can update to the following images
* `snyk/snyk:node-22`
{% hint style="info" %}
-It is recommend to use a pinned version such as `snyk/snyk:node-22`, which uses LTS version 22.
+Snyk recommends using a pinned version such as `snyk/snyk:node-22`, which uses LTS version 22.
{% endhint %}
## snyk/snyk:python-\*
-See the following table for the `snyk/snyk:python-*` images to be removed.
+See the following table for the `snyk/snyk:python-*` images Snyk will remove.
| Image | Based on |
| -------------------- | ---------- |
@@ -168,12 +168,12 @@ Users affected by the removal of these images can update to the following images
* `snyk/snyk:python-3.11`
{% hint style="info" %}
-It is recommend to use a pinned version such as `snyk/snyk:python-3.11`, which uses LTS version 3.11.
+Snyk recommends using a pinned version such as `snyk/snyk:python-3.11`, which uses LTS version 3.11.
{% endhint %}
## snyk/snyk:ruby-\*
-See the following table for the `snyk/snyk:ruby-*` images to be removed.
+See the following table for the `snyk/snyk:ruby-*` images Snyk will remove.
| Image | Based on |
| ------------------ | -------- |
@@ -189,12 +189,12 @@ Users affected by the removal of these images can update to the following images
* `snyk/snyk:ruby-3.3`
{% hint style="info" %}
-It is recommended to use the pinned version `snyk/snyk:ruby-3.3`, which is based on Ruby 3.3
+Snyk recommends using the pinned version `snyk/snyk:ruby-3.3`, which is based on Ruby 3.3
{% endhint %}
## snyk/snyk:sbt & snyk/snyk:scala
-See the following table for the `snyk/snyk:sbt` and `snyk/snyk:scala` images to be removed.
+See the following table for the `snyk/snyk:sbt` and `snyk/snyk:scala` images Snyk will remove.
| Image | Based on |
| --------------- | ----------------------------------------- |
@@ -208,5 +208,5 @@ Users affected by the removal of these images can update to the following images
* `snyk/snyk:ruby-3.3`
{% hint style="info" %}
-It is recommended to use the pinned version snyk/snyk:sbt1.10.0-scala3.4.2, which is based on Scala:3.4.2-sbt:1.10.0
+Snyk recommends using the pinned version snyk/snyk:sbt1.10.0-scala3.4.2, which is based on Scala:3.4.2-sbt:1.10.0
{% endhint %}
diff --git a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/README.md b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/README.md
index e6cafb56391f..31bf32f4be7a 100644
--- a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/README.md
@@ -4,7 +4,7 @@ Integrate the Snyk Security plugin with the JetBrains continuous integration (CI
The TeamCity integration adds a build step to scan for vulnerabilities in your Project as part of your build. After the scan, you can push your Project to Snyk for continuous monitoring.
-The Snyk plugin scans as part of your build and then displays test results directly from the TeamCity UI. This enables you to track, identify, and fix issues that risk the security of your application more quickly, over time, as fixes are made available for vulnerabilities or new vulnerabilities are disclosed.
+The Snyk plugin scans as part of your build and then displays test results directly from the TeamCity UI. You can track, identify, and fix issues that risk the security of your application more quickly, over time, as Snyk makes fixes available for vulnerabilities or as new vulnerabilities are disclosed.
For setup and use details, see the following pages:
diff --git a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/how-teamcity-integration-works.md b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/how-teamcity-integration-works.md
index bbd907c8739f..6c4595685f16 100644
--- a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/how-teamcity-integration-works.md
+++ b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/how-teamcity-integration-works.md
@@ -18,9 +18,9 @@ The steps in the process follow:
1. Snyk displays all vulnerability results and details on the **Snyk Security Report tab** in TeamCity.
2. If you specified the severity threshold for a severity assigned to any vulnerability identified in your Project, TeamCity breaks the build. Otherwise, TeamCity continues to run the build to completion (success or failure), and Snyk activity ends.
12. If you configured the **Monitor project on build** option, Snyk now runs the `snyk monitor` command and proceeds with the remainder of the steps as described here.
- 1. Snyk takes a snapshot of the Project, analyzes the manifest file of your Project to find its direct and transitive dependencies, and tests your Project against the Snyk vulnerability database for known vulnerabilities.
+ 1. Snyk takes a snapshot of the Project, analyzes the manifest file of your Project to find its direct and transitive dependencies, and tests your Project against the Snyk Vulnerability Database for known vulnerabilities.
2. Snyk pushes the snapshot to the Snyk UI. The snapshot displays the Project details and the dependency hierarchy, as well as vulnerability results and fix advice.
3. If you specified the severity threshold for a severity that is assigned to any vulnerability in your Project, TeamCity breaks the build.
4. After the snapshot is pushed to the Snyk UI, Snyk continues to monitor your Project as new vulnerabilities are disclosed. Based on your configuration, if vulnerabilities are found, Snyk notifies you by email or Slack so that you can take immediate fix action.
-For information on how to configure your build with a Snyk step, see [Team City integration: use Snyk in your build](teamcity-integration-use-snyk-in-your-build.md).
+For information on how to configure your build with a Snyk step, see [TeamCity integration: use Snyk in your build](teamcity-integration-use-snyk-in-your-build.md).
diff --git a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-configuration-parameters.md b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-configuration-parameters.md
index bb1897a35b6f..cc5698dfc1b5 100644
--- a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-configuration-parameters.md
+++ b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-configuration-parameters.md
@@ -22,7 +22,7 @@ This page provides information about [Snyk settings](teamcity-configuration-para
### Organization
* Optional
-* The ID of the Snyk Organization to which this Project will be associated when imported to the UI.
+* The ID of the Snyk Organization to associate this Project with when you import it to the UI.
* Copy the Organization ID from the Snyk UI in the Settings area.
### Project name
@@ -45,10 +45,10 @@ This page provides information about [Snyk settings](teamcity-configuration-para
### Snyk version
* Default: the most recent version
-* If you would like an older Snyk CLI version to support the plugin, select the plugin version to use in your build.
+* To support the plugin with an older Snyk CLI version, select the plugin version to use in your build.
* Snyk recommends configuring automatic upgrades and using the most recent version.
-### Use custom build tool path:
+### Use custom build tool path
* Specify which tool instance in your local environment Snyk is to use for this build.
* Without a specified tool, Snyk auto-detects the tool and locates it in your environment based on the Project type.
diff --git a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-integration-install-the-snyk-plugin.md b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-integration-install-the-snyk-plugin.md
index 830e3221614f..b8285380f7ee 100644
--- a/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-integration-install-the-snyk-plugin.md
+++ b/developer-tools/snyk-ci-cd-integrations/teamcity-jetbrains-integration-using-the-snyk-security-plugin/teamcity-integration-install-the-snyk-plugin.md
@@ -12,4 +12,4 @@ Before you begin, sign up for a Snyk account.

-To configure the integration, see [TeamCity configuration parameters](teamcity-configuration-parameters.md). For information on how to configure your build with a Snyk step, see [Team City integration: use Snyk in your build](teamcity-integration-use-snyk-in-your-build.md).
+To configure the integration, see [TeamCity configuration parameters](teamcity-configuration-parameters.md). For information on how to configure your build with a Snyk step, see [TeamCity integration: use Snyk in your build](teamcity-integration-use-snyk-in-your-build.md).
diff --git a/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/README.md b/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/README.md
index 1dfefd39b499..fc7875897e84 100644
--- a/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/README.md
+++ b/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/README.md
@@ -6,7 +6,7 @@ Terraform Cloud run tasks are available in the Terraform Cloud Team & Governance
## Terraform Cloud overview
-[Terraform Cloud](https://www.terraform.io/cloud) (TFC) is a SaaS paid platform provided by HashiCorp that provides production-ready state management and continuous delivery for teams using Terraform. It enables teams managing their cloud infrastructure with Terraform to:
+[Terraform Cloud](https://www.terraform.io/cloud) (TFC) is a SaaS paid platform provided by HashiCorp that provides production-ready state management and continuous delivery for teams using Terraform. It lets teams managing their cloud infrastructure with Terraform to:
* Have Terraform state management on the cloud with versioning and out-of-the box
* Have a centralized place for the team to collaborate on their infrastructure, reviewing and approving changes to infrastructure
@@ -16,11 +16,11 @@ Terraform Cloud run tasks are available in the Terraform Cloud Team & Governance
Terraform Cloud has a Run Tasks feature available to customers with Run Task entitlement on their Terraform plan. This entitlement is an optional add-on to the Team plan and above. A `run` in TFC represents a unit of execution in TFC that eventually generates a Terraform plan to be reviewed, approved, and applied.
-The Run Tasks feature allows external integrations to connect to `run` events and interact with them, providing a status to determine if this run should pass or fail.
+The Run Tasks feature lets external integrations connect to `run` events and interact with them, providing a status to determine if this run passes or fails.
Snyk [introduced support in May 2021](https://snyk.io/blog/prevent-cloud-misconfigurations-hashicorp-terraform-snyk-iac/) for Terraform users to scan their Terraform plan JSON output against Snyk security policies for all major cloud providers.
-The Snyk integration connects the `run` workflow of Terraform Cloud with Snyk Terraform plan scanning, meaning that for each `run` enerated, Snyk scans the Terraform plan artifact for misconfigurations.
+The Snyk integration connects the `run` workflow of Terraform Cloud with Snyk Terraform plan scanning, meaning that for each `run` generated, Snyk scans the Terraform plan artifact for misconfigurations.
If you are a user of Terraform Cloud ([Team & Governance tier](https://www.hashicorp.com/products/terraform/pricing)), you can sign up with Snyk to set the integration and connect it with your workspaces in Terraform Cloud. If you have the Run Task entitlement add-on, you can track, manage, and resolve security misconfigurations as part of your software development lifecycle with Terraform Cloud.
diff --git a/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/how-to-use-the-terraform-cloud-integration-for-iac.md b/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/how-to-use-the-terraform-cloud-integration-for-iac.md
index 1cc8e3df152f..08e367add12b 100644
--- a/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/how-to-use-the-terraform-cloud-integration-for-iac.md
+++ b/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/how-to-use-the-terraform-cloud-integration-for-iac.md
@@ -6,9 +6,9 @@ After your integration is set up, Snyk scans Terraform plans for each run trigge
1. For each run triggered in the Terraform Cloud workspace, the result of Snyk Terraform plan scanning appears under the `run tasks` step, which starts after the `Plan` stage finishes.
2. The scan results in either a `passed` or a `failed` status. If Snyk finds issues in your Terraform plan file, the scan results in a failure.
-3. Click on the **Details** link of the run task results in Terraform Cloud to view further details in Snyk.
+3. Click **Details** for the run task results in Terraform Cloud to view further details in Snyk.
1. You can also find the results under the **Projects** tab in Snyk by searching for terraform-plan.json, which is under a **Target** named by `{YOUR_TFC_ORG_NAME}/{YOUR_TFC_WORKSPACE_NAME}`
- 2. You can also use the filter in the left pane to show only Terraform Cloud Projects.
+ 2. You can also use the filter to show only Terraform Cloud Projects.
4. A single Project in Snyk (`terraform-plan.json`) is created for each workspace that uses the Snyk integration. Every Project page shows the latest scanning results.
5. To see historical scan results, navigate to the **History** tab under the relevant Project and choose the historic snapshot you wish to view.
@@ -16,7 +16,7 @@ After your integration is set up, Snyk scans Terraform plans for each run trigge
The Snyk Terraform Cloud integration provides the following levels of customization:
-* **Severity Threshold**: Set the minimum level of severity for failure. This can be set on the integration page in Snyk.
+* **Severity Threshold**: Set the minimum level of severity for failure. You can set this on the integration page in Snyk.
* **Custom Severities**: Set custom severities for issues that overwrite the defaults (for example, [SNYK-CC-00172](https://security.snyk.io/rules/cloud/SNYK-CC-00172)).
* **Enforcement Level**: Determine whether a failure blocks the `apply` or not. This setting is controlled through Terraform Cloud. For example, the `Advisory` level does not block the `apply` even if Snyk finds issues within the minimum severity threshold.
diff --git a/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/set-up-the-terraform-cloud-integration-for-iac.md b/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/set-up-the-terraform-cloud-integration-for-iac.md
index 01645af8d7cd..1a5f63aca053 100644
--- a/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/set-up-the-terraform-cloud-integration-for-iac.md
+++ b/developer-tools/snyk-ci-cd-integrations/terraform-cloud-integration-for-snyk-iac-using-run-tasks/set-up-the-terraform-cloud-integration-for-iac.md
@@ -13,7 +13,7 @@ In the Snyk Web UI, go to the Terraform Cloud integration settings page for your
## Create the Snyk Run Task for Terraform Cloud
-Now navigate to [Terraform Cloud](https://app.terraform.io) in the organization global settings:
+Navigate to [Terraform Cloud](https://app.terraform.io) in the organization global settings:
.png>)
@@ -25,7 +25,7 @@ Now navigate to [Terraform Cloud](https://app.terraform.io) in the organization
## Associate the Run Task with your Terraform Cloud Workspace
1. Navigate to your Terraform Cloud Workspace, enter the **Settings** \_\_ menu, and choose **Run Tasks**.
-2. Find the run task you created under **Available Run Tasks**; click on **+** to associate it.
+2. Find the run task you created under **Available Run Tasks**, then click **+** to associate it.
3. Choose the enforcement level (**Advisory** or **Mandatory**) and click **Create**.
After your integration is set up, Snyk scans Terraform plans for each run triggered in your workspace.
diff --git a/developer-tools/snyk-ci-cd-integrations/terraform-enterprise-integration-for-snyk-iac.md b/developer-tools/snyk-ci-cd-integrations/terraform-enterprise-integration-for-snyk-iac.md
index baf2d1b18008..ffb175bfc4cd 100644
--- a/developer-tools/snyk-ci-cd-integrations/terraform-enterprise-integration-for-snyk-iac.md
+++ b/developer-tools/snyk-ci-cd-integrations/terraform-enterprise-integration-for-snyk-iac.md
@@ -14,6 +14,6 @@ Snyk integration for Terraform Enterprise relies on network connectivity between
* To check whether a connection from your Terraform Enterprise instance to the Snyk API can be established:
* Log on to your Terraform Enterprise server.
- * Make an HTTP request to a Snyk API endpoint; for example, you could use curl to initiate an HTTP request.
- * Even if you receive a 401/Unauthorized response from a Snyk API endpoint, that is an acceptable response; you are checking only basic network connectivity.
+ * Make an HTTP request to a Snyk API endpoint. For example, you could use curl to initiate an HTTP request.
+ * Even if you receive a 401/Unauthorized response from a Snyk API endpoint, that is an acceptable response. You are checking only basic network connectivity.
* You must also verify that Snyk servers can reach your Terraform Enterprise instance. Ensure that your network configuration (firewalls and so on) allows receiving network traffic from the Snyk platform.
diff --git a/developer-tools/snyk-ci-cd-integrations/use-snyk-code-in-the-ci-cd-pipeline.md b/developer-tools/snyk-ci-cd-integrations/use-snyk-code-in-the-ci-cd-pipeline.md
index 29a2dbc660c8..bba7bd240eeb 100644
--- a/developer-tools/snyk-ci-cd-integrations/use-snyk-code-in-the-ci-cd-pipeline.md
+++ b/developer-tools/snyk-ci-cd-integrations/use-snyk-code-in-the-ci-cd-pipeline.md
@@ -2,7 +2,7 @@
You can use CI/CD integration to test your code for vulnerabilities and ensure your changes do not introduce new vulnerabilities, keeping your applications secure.
-* Snyk Code may not be supported by a Snyk CI/CD plugin, such as the Snyk Jenkins plugin. If this is the case, you can integrate [Snyk CLI](../snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/) with your CI server.
+* A Snyk CI/CD plugin, such as the Snyk Jenkins plugin, might not support Snyk Code. If this is the case, you can integrate [Snyk CLI](../snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/) with your CI server.
* You can filter the results by severity, for example, fail jobs only when high-severity vulnerabilities are introduced. See [Filter results by Severity](../snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/view-snyk-code-cli-results.md#filter-results-by-severity-level).
* You can export the CLI output to JSON or SARIF standard formats. See [Output test results](../snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/view-snyk-code-cli-results.md#export-test-results).
* You can generate more visual results using the Snyk-to-HTML tool. See [`snyk-to-html`](../snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md).
diff --git a/developer-tools/snyk-ci-cd-integrations/user-defined-custom-images-for-cli.md b/developer-tools/snyk-ci-cd-integrations/user-defined-custom-images-for-cli.md
index c67f31748e98..26bd38f1d36c 100644
--- a/developer-tools/snyk-ci-cd-integrations/user-defined-custom-images-for-cli.md
+++ b/developer-tools/snyk-ci-cd-integrations/user-defined-custom-images-for-cli.md
@@ -2,13 +2,13 @@
## Context for user-defined custom images for CLI
-Following Snyk announcements regarding [Snyk CLI Images](https://updates.snyk.io/deprecation-notice-for-snyk-cli-images-292562) and [Snyk Images](https://updates.snyk.io/deprecation-notice-for-obsolete-snyk-images-292563), Snyk is providing instructions that customers will find useful in building their own custom images. You can visit the [Snyk Images build tool chain](https://github.com/snyk/snyk-images) on GitHub for a list of [currently supported images](https://github.com/snyk/snyk-images?tab=readme-ov-file#current-images).
+Following Snyk announcements regarding [Snyk CLI Images](https://updates.snyk.io/deprecation-notice-for-snyk-cli-images-292562) and [Snyk Images](https://updates.snyk.io/deprecation-notice-for-obsolete-snyk-images-292563), Snyk provides instructions to help customers build their own custom images. You can visit the [Snyk Images build tool chain](https://github.com/snyk/snyk-images) on GitHub for a list of [currently supported images](https://github.com/snyk/snyk-images?tab=readme-ov-file#current-images).
{% hint style="info" %}
Snyk does not build or maintain images that contain end-of-life software by an upstream vendor. The list of unsupported images is available on the [GitHub repo](https://github.com/snyk/snyk-images?tab=readme-ov-file#vendor-unsupported-base-images).
{% endhint %}
-Using custom images will allow you to extend environment support to any [environment](../snyk-cli/install-the-snyk-cli/) supported by the Snyk CLI.
+Using custom images lets you extend environment support to any [environment](../snyk-cli/install-the-snyk-cli/) supported by the Snyk CLI.
## Requirements for user-defined custom images for CLI
@@ -17,7 +17,7 @@ For your custom image to be supported, it must:
* Use an environment [supported](../snyk-cli/install-the-snyk-cli/) by the Snyk CLI.
* Use a language and framework [supported](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/supported-languages/supported-languages-package-managers-and-frameworks) by Snyk.
* Have Snyk CLI installed on the image; see [Install or update the Snyk CLI](../snyk-cli/install-the-snyk-cli/) for steps to install the CLI.
-* Be publicly accessible; the integration will pull the image.
+* Be publicly accessible, so the integration can pull the image.
## Use of user-defined custom images for CLI
@@ -58,9 +58,9 @@ docker build --tag foobar/snyk:node-lts
docker push foobar/snyk:node-lts
```
-### Example: how to use a custom image in a BitBucket pipeline
+### Example: how to use a custom image in a Bitbucket pipeline
-Compatibility in the BitBucket Pipeline integration is limited to environments supported by the Docker container the integration runs in. Following the Snyk announcement [Decoupling Snyk Scan from Snyk CLI Docker Images](https://updates.snyk.io/decoupling-snyk-scan-from-snyk-cli-docker-images-277502), before v1.0.0, the experience was limited to environments supported by the Snyk CLI Docker Images.
+Compatibility in the Bitbucket Pipeline integration is limited to environments supported by the Docker container the integration runs in. Following the Snyk announcement [Decoupling Snyk Scan from Snyk CLI Docker Images](https://updates.snyk.io/decoupling-snyk-scan-from-snyk-cli-docker-images-277502), before v1.0.0, the experience was limited to environments supported by the Snyk CLI Docker Images.
With the release of v1.0.0, users can define custom images. If the list of environments provided by the [LANGUAGE](bitbucket-pipelines-integration-using-a-snyk-pipe/snyk-pipe-parameters-and-values-bitbucket-cloud.md#snyk-pipe-variables) variable does not support your particular build environment, you can define your own build environment in the form of a custom Docker image.
diff --git a/developer-tools/snyk-cli/README.md b/developer-tools/snyk-cli/README.md
index c31a2605cea0..4dd6203f921f 100644
--- a/developer-tools/snyk-cli/README.md
+++ b/developer-tools/snyk-cli/README.md
@@ -1,11 +1,11 @@
# Snyk CLI
-This documentation provides guidance and information for using the Snyk CLI to bring the functionality of Snyk into your development workflow. Here you will find:
+This documentation provides guidance and information for using the Snyk CLI to bring the functionality of Snyk into your development workflow. Here you can find:
* Guidance for [getting started with the CLI](getting-started-with-the-snyk-cli.md)
* An [important code execution warning for the Snyk CLI](code-execution-warning-for-snyk-cli.md)
* Instructions for [installing or updating the Snyk CLI](install-the-snyk-cli/), [authenticating the CLI with your account](authenticate-to-use-the-cli.md), and [configuring the CLI](configure-the-snyk-cli/)
-* The full text of the [CLI help](commands/) for all of the commands and their options, just as the help appears in your terminal
+* The full text of the [CLI help](commands/) for all of the commands and their options, as the help appears in your terminal
* A comprehensive summary of all of the [CLI commands and options](cli-commands-and-options-summary.md)
* Articles with in-depth information about [scanning and maintaining projects using the CLI](scan-and-maintain-projects-using-the-cli/)
diff --git a/developer-tools/snyk-cli/authenticate-to-use-the-cli.md b/developer-tools/snyk-cli/authenticate-to-use-the-cli.md
index fc622c437843..2d6f4bf5c896 100644
--- a/developer-tools/snyk-cli/authenticate-to-use-the-cli.md
+++ b/developer-tools/snyk-cli/authenticate-to-use-the-cli.md
@@ -1,6 +1,6 @@
# Authenticate to use the CLI
-Once you have [installed the Snyk CLI](install-the-snyk-cli/) using your chosen tool or operating system (OS), you need to authenticate with your Snyk account.
+After you [install the Snyk CLI](install-the-snyk-cli/) using your chosen tool or operating system (OS), you need to authenticate with your Snyk account.
## Supported authentication methods
@@ -30,7 +30,7 @@ snyk config environment SNYK-EU-01
```
{% endcode %}
-Once the environment has been configured, authenticate using your preferred method.
+After you configure the environment, authenticate using your preferred method.
## Authenticate locally
@@ -47,8 +47,8 @@ This applies to: Homebrew, npm, Yarn, Scoop (Windows), and Direct binary downloa
```bash
snyk auth
```
-* A browser window will open on a Snyk address. Click **Authenticate**.
-* Return to your terminal. You should see the message `Your account has been authenticated`.
+* A browser window opens on a Snyk address. Click **Authenticate**.
+* Return to your terminal. You see the message `Your account has been authenticated`.
For local service account testing, use the command:
diff --git a/developer-tools/snyk-cli/code-execution-warning-for-snyk-cli.md b/developer-tools/snyk-cli/code-execution-warning-for-snyk-cli.md
index 9d0e62bf6e0f..b144f5877145 100644
--- a/developer-tools/snyk-cli/code-execution-warning-for-snyk-cli.md
+++ b/developer-tools/snyk-cli/code-execution-warning-for-snyk-cli.md
@@ -1,13 +1,13 @@
# Code execution warning for Snyk CLI
{% hint style="warning" %}
-As part of examining the codebase for vulnerabilities, Snyk CLI may automatically execute code on your computer to obtain additional data for analysis.
+As part of examining the codebase for vulnerabilities, Snyk CLI can automatically execute code on your computer to obtain additional data for analysis.
{% endhint %}
This includes invoking the package manager, for example, pip, Gradle, Maven, Yarn, npm, and so on, to get dependency information for Snyk Open Source.
-Invoking these programs on untrusted code that has malicious configurations may expose your system to malicious code execution and exploits.
+Invoking these programs on untrusted code that has malicious configurations can expose your system to malicious code execution and exploits.
-Always make sure you understand and trust the code in the directory you intend to scan with Snyk CLI.
+Always ensure you understand and trust the code in the directory you intend to scan with Snyk CLI.
When in doubt, do not proceed with a scan.
diff --git a/developer-tools/snyk-cli/commands/README.md b/developer-tools/snyk-cli/commands/README.md
index e0668fa92c6b..93d5147cee18 100644
--- a/developer-tools/snyk-cli/commands/README.md
+++ b/developer-tools/snyk-cli/commands/README.md
@@ -50,7 +50,7 @@ Generate or test an SBOM document in ecosystems supported by Snyk.
### [`snyk aibom`](aibom.md)
-Generates an AIBOM for a local software project that is written in Python, to understand what AI models, datasets, tools, and so on are used in that project.
+Generates an AI-BOM for a local software project that is written in Python, to understand which AI models, datasets, tools, and so on the project uses.
### [`snyk aibom test`](aibom-test.md)
diff --git a/developer-tools/snyk-cli/commands/aibom.md b/developer-tools/snyk-cli/commands/aibom.md
index d017bc91862b..8eabc4e17695 100644
--- a/developer-tools/snyk-cli/commands/aibom.md
+++ b/developer-tools/snyk-cli/commands/aibom.md
@@ -19,7 +19,7 @@ The supported format is CycloneDX v1.6 (JSON).
In the JSON file, you can see the following AI dependencies and components:
-- **Models:** You can see your usage of foundational models (such as GPT-4) and open-source models (such as Llama-4). Where possible, the information surfaced also refers to model card, license, and other information.
+- **Models:** You can see your use of foundational models (such as GPT-4) and open-source models (such as Llama-4). Where possible, the information surfaced also refers to model card, license, and other information.
- **Agents:** Identified based on popular AI agent libraries.
- **Tools:** Identified based on popular patterns of tool calling.
- **MCPs:** Identified based on the official MCP SDK, in addition to other popular ways of building MCPs.
@@ -70,17 +70,17 @@ Default: `` that is the current preferred Organization in your [Account
### `--html`
-**Optional**. Embed the AIBOM into an HTML visualization of the AIBOM components and their relationships.
+**Optional**. Embed the AI-BOM into an HTML visualization of the AI-BOM components and their relationships.
### `[--json-file-output]`
-**Optional**. Save the AIBOM output as a JSON data structure directly to the specified file.
+**Optional**. Save the AI-BOM output as a JSON data structure directly to the specified file.
#### Available in 1.1303.0
### `--upload`
-**Optional**. Persist the AIBOM into your Snyk Organization. This flag requires the [`--repo`](aibom.md#repo) flag. It enables you to view your AI-BOM for the repository in the Evo web interface.
+**Optional**. Persist the AI-BOM into your Snyk Organization. This flag requires the [`--repo`](aibom.md#repo) flag. It lets you view your AI-BOM for the repository in the Evo web interface.
### `--repo`
diff --git a/developer-tools/snyk-cli/commands/auth.md b/developer-tools/snyk-cli/commands/auth.md
index 0fe6772da1f6..2b37b0f369c5 100644
--- a/developer-tools/snyk-cli/commands/auth.md
+++ b/developer-tools/snyk-cli/commands/auth.md
@@ -24,13 +24,13 @@ The Snyk API token can still be used as a fallback option. You must explicitly a
### `--auth-type=`
-Specify the \ of authentication to use. Supported types are `oauth` (the default beginning with version 1.1293.0) AND `token`.
+Specify the \ of authentication to use. Supported types are `oauth` (the default beginning with version 1.1293.0) and `token`.
### `--client-secret=` and `--client-id=`
-You can set the client secret, and the id can be set in order to use the OAuth2 Client Credentials Grant.
+Set the client secret and the ID to use the OAuth2 Client Credentials Grant.
-Both values must be provided together. They are only valid together with `--auth-type=oauth;`otherwise they will be ignored.
+You must provide both values together. They are valid only with `--auth-type=oauth;` otherwise Snyk ignores them.
For information about how to get the `` and the ``, see [Service accounts using OAuth 2.0](https://docs.snyk.io/enterprise-setup/service-accounts/service-accounts-using-oauth-2.0#oauth-2.0-with-client-secret)
diff --git a/developer-tools/snyk-cli/commands/code-test.md b/developer-tools/snyk-cli/commands/code-test.md
index 7f441c092415..63cbb5364993 100644
--- a/developer-tools/snyk-cli/commands/code-test.md
+++ b/developer-tools/snyk-cli/commands/code-test.md
@@ -79,7 +79,7 @@ Example of setting to the latest Git tag:
Set or override the remote URL for the repository.
-Example: `--remote-repo-url=https://gitlab.com/example/project` will create a target for given URL and on the UI it would be visible as `/example/project/` .
+Example: `--remote-repo-url=https://gitlab.com/example/project` creates a target for the given URL, which is visible in the UI as `/example/project/`.
### `--org=`
diff --git a/developer-tools/snyk-cli/commands/code.md b/developer-tools/snyk-cli/commands/code.md
index a36f6e0708fe..3eb463b2beb6 100644
--- a/developer-tools/snyk-cli/commands/code.md
+++ b/developer-tools/snyk-cli/commands/code.md
@@ -8,6 +8,6 @@ For more information, see [CLI for Snyk Code](https://docs.snyk.io/snyk-cli/scan
## `snyk code` command and the help docs
-The single`snyk code` command is identified here with the help options:
+The single `snyk code` command is listed here with the help options:
[`code test`](code-test.md); `code test --help`: Test source code for any known security issues (Static Application Security Testing).
diff --git a/developer-tools/snyk-cli/commands/config-environment.md b/developer-tools/snyk-cli/commands/config-environment.md
index 6c21005e88ec..fb7f00a57608 100644
--- a/developer-tools/snyk-cli/commands/config-environment.md
+++ b/developer-tools/snyk-cli/commands/config-environment.md
@@ -1,6 +1,6 @@
# Config environment
-**Note:** This command will be available as of CLI version 1.1293.0.
+**Note:** This command is available as of CLI version 1.1293.0.
If you are not in the system default environment, `SNYK-US-01`, use the `snyk config environment` command to set your environment before you run `snyk auth`.
@@ -10,7 +10,7 @@ If you are not in the system default environment, `SNYK-US-01`, use the `snyk co
## Description
-The `snyk config environment` command is provided for your convenience to make changing the endpoint used in the CLI easier and safer.
+The `snyk config environment` command makes changing the endpoint used in the CLI safer.
The outcome is almost the same as `snyk config set endpoint=` but in addition, the `snyk config environment` command does the following:
diff --git a/developer-tools/snyk-cli/commands/config.md b/developer-tools/snyk-cli/commands/config.md
index f37519910e86..3e5d77cc619f 100644
--- a/developer-tools/snyk-cli/commands/config.md
+++ b/developer-tools/snyk-cli/commands/config.md
@@ -36,7 +36,7 @@ Remove all config values.
### `environment`
-Change the endpoint to use. Run `config environment --help` or see the [snyk config environment command](https://docs.snyk.io/snyk-cli/commands/config-environment)
+Change the endpoint to use. Run `config environment --help` or see the [snyk config environment command](https://docs.snyk.io/snyk-cli/commands/config-environment)
## Supported `` values
diff --git a/developer-tools/snyk-cli/commands/container-monitor.md b/developer-tools/snyk-cli/commands/container-monitor.md
index 89ba1938cf75..6d429add0801 100644
--- a/developer-tools/snyk-cli/commands/container-monitor.md
+++ b/developer-tools/snyk-cli/commands/container-monitor.md
@@ -8,7 +8,7 @@
The `snyk container monitor` command captures the container image layers and dependencies in a project and monitors that snapshot for vulnerabilities, sending the results to [snyk.io](https://snyk.io)
-Use the `container monitor` command before integrating your code into production, to take a snapshot of the code to be monitored in order to avoid pushing vulnerabilities into production. Choose a test frequency in your Settings if you want to change the frequency from the default, which is daily.
+Use the `container monitor` command before integrating your code into production, to take a snapshot of the code to be monitored and avoid pushing vulnerabilities into production. Choose a test frequency in your Settings if you want to change the frequency from the default, which is daily.
If you make changes to your code, you must run the `container monitor` command again.
@@ -38,7 +38,7 @@ Use the `-d` option to output the debug logs.
Specify the `` to run Snyk commands tied to a specific Snyk Organization. The `` influences some features availability and private test limits.
-If you have multiple organizations, you can set a default from the CLI using:
+If you have multiple Organizations, you can set a default from the CLI using:
`$ snyk config set org=`
diff --git a/developer-tools/snyk-cli/commands/container-sbom.md b/developer-tools/snyk-cli/commands/container-sbom.md
index bb6f842b7ff6..2132e524724e 100644
--- a/developer-tools/snyk-cli/commands/container-sbom.md
+++ b/developer-tools/snyk-cli/commands/container-sbom.md
@@ -2,9 +2,9 @@
## Prerequisites
-**Feature availability:** This feature is currently in Early Access and is available to customers on Snyk Enterprise plans.
+**Feature availability:** This feature is in Early Access and is available to customers on Snyk Enterprise plans.
-**Note:** In order to use the SBOM generation feature, you must use a minimum of CLI version 1.1226.0.
+**Note:** To use the SBOM generation feature, you must use a minimum of CLI version 1.1226.0.
The `snyk container sbom` feature requires an internet connection.
@@ -45,13 +45,13 @@ Specify the `` (name or UUID) to run Snyk commands tied to a specific Sn
Use this option when your default Organization does not have API entitlement.
-If this option is omitted, the default Organization for your account will be used.
+If you omit this option, Snyk uses the default Organization for your account.
This is the `` that is the current preferred Organization in your [Account settings](https://app.snyk.io/account)
Set a default to ensure all newly tested projects are tested under your default Organization. If you need to override the default, use the `--org=` option.
-If you have multiple organizations, you can set a default from the CLI using:
+If you have multiple Organizations, you can set a default from the CLI using:
`$ snyk config set org=`
@@ -95,7 +95,7 @@ Specify a password to use when connecting to a container registry. This is ignor
### ``
-Required. The image for which you will generate an SBOM document.
+Required. The image for which you generate an SBOM document.
**Note:** The image should be specified in the format of `repo:tag`.
diff --git a/developer-tools/snyk-cli/commands/container-test.md b/developer-tools/snyk-cli/commands/container-test.md
index 0e5e16061785..9b84df695721 100644
--- a/developer-tools/snyk-cli/commands/container-test.md
+++ b/developer-tools/snyk-cli/commands/container-test.md
@@ -102,7 +102,7 @@ Fail only when there are vulnerabilities that can be fixed.
To fail on any Snyk discoverable vulnerability (the default behavior), do not use the `--fail-on` option. If vulnerabilities do not have a Snyk-computed fix and this option is being used, tests pass.
-**Note**: If you test code constrained by metadata that Snyk cannot respect with `snyk test`, Snyk will not propose a fix, in order to avoid breaking your code. You may be able to identify and apply a fix manually.
+**Note**: If you test code constrained by metadata that Snyk cannot respect with `snyk test`, Snyk does not propose a fix, to avoid breaking your code. You can identify and apply a fix manually.
### `--app-vulns`
@@ -124,7 +124,7 @@ Allow disabling the scan of `node_modules` directories inside node.js container
In CLI versions v1.1292.0 and higher, `node_modules` scanning is enabled by default.
-When `node_modules` scaning is disabled, Snyk reports vulnerabilities for npm Projects sourced from application file pairs: `[package.json, package-lock.json], [package.json, yarn.lock]`.
+When `node_modules` scanning is disabled, Snyk reports vulnerabilities for npm Projects sourced from application file pairs: `[package.json, package-lock.json], [package.json, yarn.lock]`.
### `--nested-jars-depth`
diff --git a/developer-tools/snyk-cli/commands/iac-test.md b/developer-tools/snyk-cli/commands/iac-test.md
index 09dbe3a08cbb..e9327a73400d 100644
--- a/developer-tools/snyk-cli/commands/iac-test.md
+++ b/developer-tools/snyk-cli/commands/iac-test.md
@@ -59,7 +59,7 @@ For more information see the article [How to select the Organization to use in t
### `--ignore-policy`
-Ignore all set policies, the current policy in the `.snyk` file, rg level ignores, and the project policy on snyk.io.
+Ignore all set policies, the current policy in the `.snyk` file, org level ignores, and the project policy on snyk.io.
### `--policy-path=`
@@ -139,7 +139,7 @@ For more information including allowable characters see [Project tags](https://d
Set or override the remote URL for the repository.
-Example: `--remote-repo-url=https://gitlab.com/example/project` will create a target for given URL and on the UI it would be visible as `/example/project/` .
+Example: `--remote-repo-url=https://gitlab.com/example/project` creates a target for the given URL, which is visible in the UI as `/example/project/`.
Can be used in combination with the `--report` option.
diff --git a/developer-tools/snyk-cli/commands/iac-update-exclude-policy.md b/developer-tools/snyk-cli/commands/iac-update-exclude-policy.md
index 97bd7c7d602e..17468b9413d7 100644
--- a/developer-tools/snyk-cli/commands/iac-update-exclude-policy.md
+++ b/developer-tools/snyk-cli/commands/iac-update-exclude-policy.md
@@ -17,7 +17,7 @@ For more information, see [Ignore resources](https://docs.snyk.io/scan-with-snyk
Possible exit codes and their meaning:
**0**: success, exclude rules generated successfully\
-**1**: error, something wrong happened during exclude rules generation
+**1**: error, something went wrong during exclude rules generation
## Configure the Snyk CLI
diff --git a/developer-tools/snyk-cli/commands/ignore.md b/developer-tools/snyk-cli/commands/ignore.md
index e9b3140a0f6e..504422c1a3dc 100644
--- a/developer-tools/snyk-cli/commands/ignore.md
+++ b/developer-tools/snyk-cli/commands/ignore.md
@@ -14,7 +14,7 @@ The `snyk ignore` command modifies the `.snyk` policy file to ignore a specified
`snyk ignore [--expiry=] [--reason=] [--policy-path=] [--file-path=] [OPTIONS]`
-You can exclude directories or files from scanning using the `--file-path` option. This option is available only for Snyk Code (SAST) tests or Open Source `--unmanaged` tests; it will not work for other test types.
+You can exclude directories or files from scanning using the `--file-path` option. This option is available only for Snyk Code (SAST) tests or Open Source `--unmanaged` tests; it does not work for other test types.
## Examples of updates to the `.snyk` file
@@ -55,7 +55,7 @@ exclude:
**Note**: Ignoring issues or vulnerabilities using the `.snyk` file is not supported for Snyk Code.
-The `--file-path` option excludes directories or files from scanning and is available only for Snyk Code (SAST) tests or Open Source `--unmanaged` tests; it will not work for other test types.
+The `--file-path` option excludes directories or files from scanning and is available only for Snyk Code (SAST) tests or Open Source `--unmanaged` tests; it does not work for other test types.
## Debug
@@ -79,9 +79,9 @@ Supported formats:
Default: 30 days or none if used with `--file-path`
-Note: The `expiry` field is not required, it will use the default if omitted. If you need a permanent ignore, set the expiry to a date far in the future (for example, `9999-01-01`).
+Note: The `expiry` field is not required; Snyk uses the default if you omit it. If you need a permanent ignore, set the expiry to a date far in the future (for example, `9999-01-01`).
-To ensure that expiration dates are enforced for ignores, you must specify a valid expiration date. The date must be in the Date Time String Javascript format like YYYY-MM-DDThh:mm:ss.fffZ. If the specified expiration date does not adhere to this format, the ignore will be respected and persist indefinitely.
+To ensure that expiration dates are enforced for ignores, you must specify a valid expiration date. The date must be in the Date Time String Javascript format like YYYY-MM-DDThh:mm:ss.fffZ. If the specified expiration date does not adhere to this format, Snyk respects the ignore and persists it indefinitely.
### `--reason=`
diff --git a/developer-tools/snyk-cli/commands/monitor.md b/developer-tools/snyk-cli/commands/monitor.md
index d7502e67bfc3..483e41bc5631 100644
--- a/developer-tools/snyk-cli/commands/monitor.md
+++ b/developer-tools/snyk-cli/commands/monitor.md
@@ -8,7 +8,7 @@
The `snyk monitor` command creates a project in your Snyk account to be continuously monitored for open-source vulnerabilities and license issues, sending the results to [snyk.io](https://snyk.io)
-Use the `monitor` command before integrating a project into production, to take a snapshot of the code to be monitored in order to avoid pushing vulnerabilities into production. Choose a test frequency in your Settings if you want to change the frequency from the default, which is daily.
+Use the `monitor` command before integrating a project into production, to take a snapshot of the code to be monitored and avoid pushing vulnerabilities into production. Choose a test frequency in your Settings if you want to change the frequency from the default, which is daily.
After running the `snyk monitor` command, log in to the Snyk website and view your projects to see the monitor.
@@ -46,7 +46,7 @@ See also subsequent sections for options for specific build environments, packag
### `--reachability=`
-Perform reachability analysis during the scan. This feature is currently in Snyk Preview. For more information, refer to [Reachability analysis](https://docs.snyk.io/manage-risk/prioritize-issues-for-fixing/reachability-analysis)
+Perform reachability analysis during the scan. This feature is in Snyk Preview. For more information, refer to [Reachability analysis](https://docs.snyk.io/manage-risk/prioritize-issues-for-fixing/reachability-analysis)
Default: `false`
@@ -243,7 +243,7 @@ Snyk reports the test results per individual `pom.xml` file within the aggregate
### `--maven-skip-wrapper`
-Forces the use of a globally installed `mvn` command, even when a Maven wrapper (i.e. `mvnw` or `mvnw.cmd`) is present in the project.
+Forces the use of a globally installed `mvn` command, even when a Maven wrapper (that is, `mvnw` or `mvnw.cmd`) is present in the project.
Some projects include a Maven wrapper but users may prefer (or be required by their CI environment) to use a globally installed `mvn` instead. This option gives an explicit escape hatch without having to remove the wrapper from the project.
@@ -335,7 +335,7 @@ This is useful when you have multiple projects with the same name in other `.sln
### `--dotnet-runtime-resolution`
-**Note:** This option in in Early Access and may change until it is released.
+**Note:** This option is in Early Access and may change until it is released.
Required. You must use this option when you test .NET projects using Runtime Resolution Scanning.
@@ -343,9 +343,9 @@ Example: `snyk test --dotnet-runtime-resolution`
### `--dotnet-target-framework`
-**Note:** This option in in Early Access and may change until it is released.
+**Note:** This option is in Early Access and may change until it is released.
-Optional. You may use this option if your solution contains multiple `` directives. If you do not specify the option `--dotnet-target-framework`, all supported Target Frameworks will be scanned.
+Optional. You may use this option if your solution contains multiple `` directives. If you do not specify the option `--dotnet-target-framework`, Snyk scans all supported Target Frameworks.
The Target Framework specified with this option should be defined following the standard [naming convention](https://learn.microsoft.com/en-us/dotnet/standard/frameworks#supported-target-frameworks)
@@ -405,7 +405,7 @@ You can specify how many sub-directories to search using `--detection-depth`.
You can exclude directories and files using `--exclude`.
-Default:`--all-projects` automatically detects and scans Yarn Workspaces.with other projects.
+Default: `--all-projects` automatically detects and scans Yarn Workspaces with other projects.
## Option for CocoaPods projects
@@ -421,7 +421,7 @@ Default: false
Indicate which specific Python commands to use based on the Python version.
-Snyk uses Python in order to scan and find your dependencies. If you are using multiple Python versions, use this parameter to specify the correct Python command for execution.
+Snyk uses Python to scan and find your dependencies. If you are using multiple Python versions, use this parameter to specify the correct Python command for execution.
Default: `python` This executes your default python version. Run `python -V` to find out what your default version is.
diff --git a/developer-tools/snyk-cli/commands/sbom.md b/developer-tools/snyk-cli/commands/sbom.md
index 459a1ab0a7c6..a5a7d322fbd0 100644
--- a/developer-tools/snyk-cli/commands/sbom.md
+++ b/developer-tools/snyk-cli/commands/sbom.md
@@ -4,7 +4,7 @@
**Feature availability:** This feature is available only to customers on Snyk Enterprise plans.
-**Note:** In order to use the SBOM generation feature, you must use the minimum CLI version 1.1071.0.
+**Note:** To use the SBOM generation feature, you must use the minimum CLI version 1.1071.0.
The `snyk sbom` feature requires an internet connection.
@@ -45,7 +45,7 @@ Specify the `` (name or UUID) to run Snyk commands tied to a specific Sn
Use this option when your default Organization does not have API entitlement.
-If this option is omitted, the default Organization for your account will be used.
+If you omit this option, Snyk uses the default Organization for your account.
This is the `` that is the current preferred Organization in your [Account settings](https://app.snyk.io/account)
@@ -149,7 +149,7 @@ Be sure to run the scan in the same directory as the root pom.xml file.
### `--maven-skip-wrapper`
-Forces the use of a globally installed `mvn` command, even when a Maven wrapper (i.e. `mvnw` or `mvnw.cmd`) is present in the project.
+Forces the use of a globally installed `mvn` command, even when a Maven wrapper (that is, `mvnw` or `mvnw.cmd`) is present in the project.
Some projects include a Maven wrapper but users may prefer (or be required by their CI environment) to use a globally installed `mvn` instead. This option gives an explicit escape hatch without having to remove the wrapper from the project.
@@ -267,7 +267,7 @@ Default: `--all-projects` automatically detects and scans Yarn Workspaces with o
Indicate which specific Python commands to use based on the Python version.
-Snyk uses Python in order to scan and find your dependencies. If you are using multiple Python versions, use this parameter to specify the correct Python command for execution.
+Snyk uses Python to scan and find your dependencies. If you are using multiple Python versions, use this parameter to specify the correct Python command for execution.
Default: `python` This executes your default python version. Run `python -V` to find out what your default version is.
diff --git a/developer-tools/snyk-cli/commands/test.md b/developer-tools/snyk-cli/commands/test.md
index a6ef6fdaa0a9..82b81cc5e1bd 100644
--- a/developer-tools/snyk-cli/commands/test.md
+++ b/developer-tools/snyk-cli/commands/test.md
@@ -37,7 +37,7 @@ See also subsequent sections for options for specific build environments, packag
### `--reachability=`
-Perform reachability analysis during the scan. This feature is currently in Snyk Preview. For more information, refer to [Reachability analysis](https://docs.snyk.io/manage-risk/prioritize-issues-for-fixing/reachability-analysis)
+Perform reachability analysis during the scan. This feature is in Snyk Preview. For more information, refer to [Reachability analysis](https://docs.snyk.io/manage-risk/prioritize-issues-for-fixing/reachability-analysis)
Default: `false`
@@ -73,7 +73,7 @@ Can be used with `--all-projects` and `--yarn-workspaces` to indicate directory
Example: `$ snyk test --all-projects --exclude=dir1,file2`
-This will exclude any directories and files named `dir1` and `file2` when scanning for project manifest files such as: `./dir1`, `./src/dir1`, `./file2`, `./src/file2` and so on.
+This excludes any directories and files named `dir1` and `file2` when scanning for project manifest files such as: `./dir1`, `./src/dir1`, `./file2`, `./src/file2` and so on.
**Note**: `--exclude=dir1` will find both `./dir1`, and `./src/dir1`.\
However, `--exclude=./src/dir1` will result in an error because it includes a path.
@@ -96,7 +96,7 @@ Print the dependency tree before sending it for analysis.
Set or override the remote URL for the repository.
-Example: `--remote-repo-url=https://gitlab.com/example/project` will create a target for given URL and on the UI it would be visible as `/example/project/` .
+Example: `--remote-repo-url=https://gitlab.com/example/project` creates a target for the given URL, and it is visible in the UI as `/example/project/` .
### `--dev`
@@ -230,7 +230,7 @@ Fail only when there are vulnerabilities that can be fixed. Use one of the value
To fail on any Snyk-discoverable vulnerability (the default behavior), do not use the `--fail-on` option. If vulnerabilities do not have a Snyk-computed fix and this option is being used, tests pass.
-**Note**: If you test code constrained by metadata that Snyk cannot respect with `snyk test`, Snyk will not propose a fix, in order to avoid breaking your code. You may be able to identify and apply a fix manually.
+**Note**: If you test code constrained by metadata that Snyk cannot respect with `snyk test`, Snyk does not propose a fix, to avoid breaking your code. You can identify and apply a fix manually.
### `--reachability-filter=`
@@ -256,9 +256,9 @@ Snyk reports the test results per individual `pom.xml` file within the aggregate
### `--maven-skip-wrapper`
-Forces the use of a globally installed `mvn` command, even when a Maven wrapper (i.e. `mvnw` or `mvnw.cmd`) is present in the project.
+Forces the use of a globally installed `mvn` command, even when a Maven wrapper (that is, `mvnw` or `mvnw.cmd`) is present in the project.
-Some projects include a Maven wrapper but users may prefer (or be required by their CI environment) to use a globally installed `mvn` instead. This option gives an explicit escape hatch without having to remove the wrapper from the project.
+Some projects include a Maven wrapper, but you might prefer, or your CI environment might require, a globally installed `mvn` instead. This option gives an explicit escape hatch without having to remove the wrapper from the project.
### `--scan-unmanaged`
@@ -372,7 +372,7 @@ This is useful when you have multiple projects with the same name in other `.sln
### `--dotnet-target-framework`
-Optional. You may use this option if your solution contains multiple `` directives. If you do not specify the option `--dotnet-target-framework`, all supported Target Frameworks will be scanned.
+Optional. You may use this option if your solution contains multiple `` directives. If you do not specify the option `--dotnet-target-framework`, Snyk scans all supported Target Frameworks.
The Target Framework specified with this option should be defined following the standard [naming convention](https://learn.microsoft.com/en-us/dotnet/standard/frameworks#supported-target-frameworks)
@@ -444,7 +444,7 @@ You can specify how many sub-directories to search using `--detection-depth.`
You can exclude directories and files using `--exclude`.
-Default: `--all-projects` automatically detects and scans Yarn Workspaces.with other projects.
+Default: `--all-projects` automatically detects and scans Yarn Workspaces with other projects.
## Option for CocoaPods projects
@@ -460,7 +460,7 @@ Default: false
Indicate which specific Python commands to use based on the Python version.
-Snyk uses Python in order to scan and find your dependencies. If you are using multiple Python versions, use this parameter to specify the correct Python command for execution.
+Snyk uses Python to scan and find your dependencies. If you are using multiple Python versions, use this parameter to specify the correct Python command for execution.
Default: `python` This executes your default python version. Run `python -V` to find out what your default version is.
diff --git a/developer-tools/snyk-cli/configure-the-snyk-cli/environment-variables-for-snyk-cli.md b/developer-tools/snyk-cli/configure-the-snyk-cli/environment-variables-for-snyk-cli.md
index a4c07518ec8d..b518fa86faab 100644
--- a/developer-tools/snyk-cli/configure-the-snyk-cli/environment-variables-for-snyk-cli.md
+++ b/developer-tools/snyk-cli/configure-the-snyk-cli/environment-variables-for-snyk-cli.md
@@ -6,7 +6,7 @@ This page identifies environment variables that you can use to configure specifi
`SNYK_MAX_ATTEMPTS`
-Starting with Snyk CLI v1.1303.2 `SNYK_MAX_ATTEMPTS=` can be used to enable network level retries. The default value is 1, which means that a network request will fail after one failed attempt. Increasing the value will make the network stack retry retriable status codes. The parameter can be used to mitigate transient network failures at the cost of increased runtime.
+Starting with Snyk CLI v1.1303.2, you can use `SNYK_MAX_ATTEMPTS=` to enable network level retries. The default value is 1, which means that a network request fails after one failed attempt. Increasing the value makes the network stack retry retriable status codes. Use the parameter to mitigate transient network failures at the cost of increased runtime.
The range is from 1 to 2,147,483,648 times.
@@ -16,13 +16,13 @@ Alternatively, you can set the value using the command line parameter `--max-att
`SNYK_CACHE_PATH`
-By specifying the environment variable `SNYK_CACHE_PATH`, you can define the path to the folder where the CLI will cache files. You must meet the [access requirements](../security-concept-of-operations-for-snyk/access-requirements.md) for the folder specified.
+By specifying the environment variable `SNYK_CACHE_PATH`, you can define the path to the folder where the CLI caches files. You must meet the [access requirements](../security-concept-of-operations-for-snyk/access-requirements.md) for the folder specified.
## Configure a timeout for CLI operations
`SNYK_TIMEOUT_SECS`
-When you specify an environment variable such as `SNYK_TIMEOUT_SECS=60`, the CLI will cancel all operations after 60 seconds and exit with exit code 69.
+When you specify an environment variable such as `SNYK_TIMEOUT_SECS=60`, the CLI cancels all operations after 60 seconds and exits with exit code 69.
The timeout can range from 1 to 2,147,483,648 seconds, approximately 596.523 hours.
diff --git a/developer-tools/snyk-cli/configure-the-snyk-cli/proxy-configuration-for-snyk-cli.md b/developer-tools/snyk-cli/configure-the-snyk-cli/proxy-configuration-for-snyk-cli.md
index a2fc3f87e58f..a29334dbf8f3 100644
--- a/developer-tools/snyk-cli/configure-the-snyk-cli/proxy-configuration-for-snyk-cli.md
+++ b/developer-tools/snyk-cli/configure-the-snyk-cli/proxy-configuration-for-snyk-cli.md
@@ -45,8 +45,8 @@ The use of these variables follows the MIT Kerberos implementation:
* [KRB5\_CONFIG](https://web.mit.edu/kerberos/krb5-devel/doc/admin/conf_files/krb5_conf.html) - Kerberos configuration file
* [KRB5CCNAME](https://web.mit.edu/kerberos/krb5-1.12/doc/basic/ccache_def.html) - Kerberos credential cache
- * Currently, the only supported credential cache type (`ccache` types) is **FILE.**
- * It is important to note that the cache file cannot be updated by the CLI. This means that the cache file must be updated externally, for example, by running [kinit](https://web.mit.edu/kerberos/krb5-1.12/doc/user/user_commands/kinit.html).,
+ * The only supported credential cache type (`ccache` types) is **FILE.**
+ * The CLI cannot update the cache file. You must update the cache file externally, for example, by running [kinit](https://web.mit.edu/kerberos/krb5-1.12/doc/user/user_commands/kinit.html).
## Disable proxy authentication
diff --git a/developer-tools/snyk-cli/debugging-the-snyk-cli.md b/developer-tools/snyk-cli/debugging-the-snyk-cli.md
index 4c0b921427ad..722c8af8d925 100644
--- a/developer-tools/snyk-cli/debugging-the-snyk-cli.md
+++ b/developer-tools/snyk-cli/debugging-the-snyk-cli.md
@@ -1,6 +1,6 @@
# Debugging the Snyk CLI
-When working with the CLI on your Projects, it is possible that you encounter unexpected behavior that requires investigation. Such behavior can be caused by configuration, environment, or bugs.
+When working with the CLI on your Projects, you might encounter unexpected behavior that requires investigation. Configuration, environment, or bugs can cause such behavior.
## Debug mode
diff --git a/developer-tools/snyk-cli/getting-started-with-the-snyk-cli.md b/developer-tools/snyk-cli/getting-started-with-the-snyk-cli.md
index cea9394e08ef..73a90bdc7323 100644
--- a/developer-tools/snyk-cli/getting-started-with-the-snyk-cli.md
+++ b/developer-tools/snyk-cli/getting-started-with-the-snyk-cli.md
@@ -43,7 +43,7 @@ Look at the `test` command report in your terminal. The report shows the vulnera
Before using the Snyk CLI to test your Open Source Project for vulnerabilities, with limited exceptions, you must build your Project. For details, see [Open Source Projects that must be built before testing](https://docs.snyk.io/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/open-source-projects-that-must-be-built-before-testing-with-the-snyk-cli).
-In addition, depending on the language of your open-source Project, you may need to set up your language environment before using the Snyk CLI. For details, refer to [Supported languages, package managers, and frameworks](https://docs.snyk.io/supported-languages-package-managers-and-frameworks).
+In addition, depending on the language of your open-source Project, you might need to set up your language environment before using the Snyk CLI. For details, refer to [Supported languages, package managers, and frameworks](https://docs.snyk.io/supported-languages-package-managers-and-frameworks).
After you have installed the CLI and authenticated your machine, to **scan an open-source Project**, use `cd /my/project/` to change the current directory to a folder containing a supported package manifest file, such as `package.json`, `pom.xml`, or `composer.lock`. Then run `snyk test`. All vulnerabilities identified are listed, including their path and fix guidance.
@@ -103,7 +103,7 @@ See the course [Introduction to the Snyk CLI](https://learn.snyk.io/lesson/snyk-
Snyk also provides a [cheat sheet](https://res.cloudinary.com/snyk/image/upload/v1664236143/cheat-sheets/cheat-sheet-snyk-cli-v3.pdf) ([blog post](https://snyk.io/blog/snyk-cli-cheat-sheet/)).
-In particular, see the information about the following options that you may find useful:
+In particular, see the information about the following useful options:
* `--severity-threshold=low|medium|high|critical`: Report only vulnerabilities of the specified level or higher.
* `--json`: Print results in JSON format.
@@ -121,7 +121,7 @@ Effective July 22, 2024, Snyk CLI no longer accepts external contributions.
Due to the CLI's extensive usage and intricate nature, even minor modifications can have unforeseen consequences. Since introducing [release channels](https://docs.snyk.io/snyk-cli/releases-and-channels-for-the-snyk-cli) to the CLI code in April 2024, Snyk's focus has been on stabilizing releases. Snyk believes this open-source, closed-contribution model best serves this goal.
-In the spirit of transparency to Snyk customers and CLI users, Snyk will continue working in public. However, going forward, Snyk CLI is closed to contributions.
+In the spirit of transparency to Snyk customers and CLI users, Snyk continues working in public. However, going forward, Snyk CLI is closed to contributions.
Snyk appreciates and extends gratitude to the Snyk community.
diff --git a/developer-tools/snyk-cli/install-the-snyk-cli/README.md b/developer-tools/snyk-cli/install-the-snyk-cli/README.md
index 22c3c8fdd1bb..690ce71f7f94 100644
--- a/developer-tools/snyk-cli/install-the-snyk-cli/README.md
+++ b/developer-tools/snyk-cli/install-the-snyk-cli/README.md
@@ -10,7 +10,7 @@ The Snyk CLI can be installed across all major operating systems using several d
After you install the CLI, authenticate your Snyk account to start scanning your Snyk Projects. For more information, visit [Authenticate to use the CLI](../authenticate-to-use-the-cli.md).
{% hint style="warning" %}
-The Snyk CLI does not natively support Windows Subsystem for Linux (WSL). You can install and use the CLI in a WSL environment, but Snyk does not guarantee compatability. Consequently, Snyk integrations that rely on the CLI, such as IDE extensions and CI/CD plugins, do not natively support WSL.
+The Snyk CLI does not natively support Windows Subsystem for Linux (WSL). You can install and use the CLI in a WSL environment, but Snyk does not guarantee compatibility. Consequently, Snyk integrations that rely on the CLI, such as IDE extensions and CI/CD plugins, do not natively support WSL.
{% endhint %}
## Common installation steps
@@ -146,7 +146,7 @@ Authenticate the connection. For more details, visit Authentication in Docker.
GitHub actions
-1. In your Snyk account, navigate to **Account Settings** and copy your Auth token. Use a Service Account Token if you are an Enterprise plan user, to protect your pipeline from breaking if you as an individual leave the comapny.
+1. In your Snyk account, navigate to **Account Settings** and copy your Auth token. Use a Service Account Token if you are an Enterprise plan user, to protect your pipeline from breaking if you as an individual leave the company.
2. Navigate to **Settings** > **Secrets and variables** > **Actions**, and create a **New repository secret** in the format:
1. **Name**: `SNYK_TOKEN`
2. **Secret**: Your Snyk Auth token or Service Account Token
@@ -263,11 +263,11 @@ Download the standalone binary for your operating system and CPU architecture, m
For Windows, download the `.exe` and manually add its location to your system variables.
1. Download [snyk-win.exe](https://static.snyk.io/cli/latest/snyk-win.exe)
-2. Rename the file from `snyk-win.exe` to just `snyk.exe`.
+2. Rename the file from `snyk-win.exe` to `snyk.exe`.
3. Move it to a permanent folder (for example, `C:\tools\snyk\`).
4. Add to `PATH`:
1. Search for **Environment Variables** in your Start Menu.
2. Under **System Variables**, find **Path** and click **Edit**.
- 3. Add the path to the folder where you saved the `.exe` (e.g., `C:\tools\snyk\`).
+ 3. Add the path to the folder where you saved the `.exe` (for example, `C:\tools\snyk\`).
diff --git a/developer-tools/snyk-cli/install-the-snyk-cli/install-or-upgrade-to-version-of-node.js-required-for-snyk-cli.md b/developer-tools/snyk-cli/install-the-snyk-cli/install-or-upgrade-to-version-of-node.js-required-for-snyk-cli.md
index f0b791cc0cfa..52a20c159a72 100644
--- a/developer-tools/snyk-cli/install-the-snyk-cli/install-or-upgrade-to-version-of-node.js-required-for-snyk-cli.md
+++ b/developer-tools/snyk-cli/install-the-snyk-cli/install-or-upgrade-to-version-of-node.js-required-for-snyk-cli.md
@@ -1,12 +1,12 @@
# Install or upgrade to version of Node.js required for Snyk CLI
-Node.js v12 or higher is required for Snyk CLI version 1.853.0 and higher. Snyk recommends running as recent a version of Node.js and npm as possible to ensure full compatibility.
+Snyk CLI version 1.853.0 and higher requires Node.js v12 or higher. Snyk recommends running as recent a version of Node.js and npm as possible to ensure full compatibility.
### How to upgrade Node.js
Node.js comes with npm pre-installed, but the manager is updated more frequently than Node.js.
-To update Node.js, you need need the npm [n module](https://www.npmjs.com/package/n).
+To update Node.js, you need the npm [n module](https://www.npmjs.com/package/n).
Run this code to clear the npm cache, install `n`, and install the latest stable version of Node.js:
@@ -22,7 +22,7 @@ Follow these steps to upgrade Node.js:
1. Run `npm-v` to see which version you have.
2. Then run`npm install npm@latest -g` to install the newest npm update.
-3. Run `npm -v` again to make sure npm updated correctly.
+3. Run `npm -v` again to ensure npm updated correctly.
### How to upgrade npm
diff --git a/developer-tools/snyk-cli/install-the-snyk-cli/using-cli-releases-before-version-1.1230.0-on-an-apple-m1-or-m2-machine.md b/developer-tools/snyk-cli/install-the-snyk-cli/using-cli-releases-before-version-1.1230.0-on-an-apple-m1-or-m2-machine.md
index 39a6f09372a1..b0046c98268b 100644
--- a/developer-tools/snyk-cli/install-the-snyk-cli/using-cli-releases-before-version-1.1230.0-on-an-apple-m1-or-m2-machine.md
+++ b/developer-tools/snyk-cli/install-the-snyk-cli/using-cli-releases-before-version-1.1230.0-on-an-apple-m1-or-m2-machine.md
@@ -2,14 +2,14 @@
**Beginning with version 1.1230.0**, the Snyk CLI supports Apple silicon, including M1 and M2 machines, so **you no longer need the Rosetta 2 software, as suggested on this page**. Snyk recommends always keeping your CLI installation updated to the latest version. You can check which version of the Snyk CLI you have installed by running `snyk --version`.
-If you run releases of the Snyk CLI before [version 1.1230.0](https://github.com/snyk/cli/releases/tag/v1.1230.0) on an Apple M1 machine, you may see the following error:
+If you run releases of the Snyk CLI before [version 1.1230.0](https://github.com/snyk/cli/releases/tag/v1.1230.0) on an Apple M1 machine, you might see the following error:
```
$ snyk --version
bad CPU type in executable
```
-On an M2 machine, you may see this error:
+On an M2 machine, you might see this error:
`Unknown system error -86`
diff --git a/developer-tools/snyk-cli/releases-and-channels-for-the-snyk-cli.md b/developer-tools/snyk-cli/releases-and-channels-for-the-snyk-cli.md
index 50ef3b1277da..e4d81adb9e81 100644
--- a/developer-tools/snyk-cli/releases-and-channels-for-the-snyk-cli.md
+++ b/developer-tools/snyk-cli/releases-and-channels-for-the-snyk-cli.md
@@ -14,7 +14,7 @@ Given a version number MAJOR.MINOR.PATCH, increment the:
Additional labels are added for CLI releases as needed based on the standard.
-In the Snyk CLI context, Snyk defines a breaking change as a change that could break automated workflows and cause failures in your existing working setup, such as CI/CD integrations. Breaking changes will be indicated by incrementing MAJOR and also mentioned in the release notes.
+In the Snyk CLI context, Snyk defines a breaking change as a change that could break automated workflows and cause failures in your existing working setup, such as CI/CD integrations. Snyk indicates breaking changes by incrementing MAJOR and also mentions them in the release notes.
Some examples of breaking changes are the following:
@@ -31,10 +31,10 @@ When you select a channel, you are selecting the stability level you want to use
### preview
{% hint style="info" %}
-Snyk offers a preview channel for those who want to test _in-progress_ features. However, keep in mind that this channel may contain bugs and is not officially supported.
+Snyk offers a preview channel for those who want to test _in-progress_ features. However, keep in mind that this channel might contain bugs and is not officially supported.
{% endhint %}
-A preview version is not recommended for production environments. It may contain bugs and is best tested in a local environment. For instructions on installing a preview version, see [Install standalone executables from a channel.](releases-and-channels-for-the-snyk-cli.md#install-standalone-executables-from-a-channel)
+A preview version is not recommended for production environments. It might contain bugs and is best tested in a local environment. For instructions on installing a preview version, see [Install standalone executables from a channel.](releases-and-channels-for-the-snyk-cli.md#install-standalone-executables-from-a-channel)
* Preview: pre-release builds are deployed regularly up to multiple times a day and contain the latest changes.
* Version Pattern: v{MAJOR}.{MINOR}.{PATCH}-preview
@@ -96,7 +96,7 @@ Snyk recommends opting in to a stable channel for the following reasons:
However, customers who would like to receive code changes as soon as they are merged can opt in to the preview channel. Note that Snyk does not offer support for the preview channel and expects known issues to be present in this channel.
{% hint style="info" %}
-Existing Snyk customers who are opted in to the previously known latest channel will be automatically opted in to the stable channel. Snyk is mirroring the latest channel and the stable channel to avoid disruption to existing customers. However, Snyk encourages you to switch to the new channels as shown above.
+Snyk automatically opts existing customers who are opted in to the previously known latest channel into the stable channel. Snyk is mirroring the latest channel and the stable channel to avoid disruption to existing customers. However, Snyk encourages you to switch to the new channels as shown above.
{% endhint %}
### Linux static builds
@@ -105,7 +105,7 @@ As of `v1.1305.0`, the Snyk CLI Linux binaries (`snyk-linux`, `snyk-linux-arm64`
## Support policy
-Snyk supports the latest 12 months of CLI versions in the stable channel, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and will not receive bug fixes or support for troubleshooting.
+Snyk supports the latest 12 months of CLI versions in the stable channel, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and do not receive bug fixes or support for troubleshooting.
Snyk provides fixes only in new versions and cannot fix older versions. Customers must upgrade to benefit from improvements.
@@ -118,7 +118,7 @@ If you need help, submit a [request](https://support.snyk.io) to Snyk Support.
This section specifies the minimum requirements for the latest CLI, covering aspects such as the operating system, dynamically linked libraries, and runtimes.
{% hint style="warning" %}
-Snyk CLI is designed and expected to run on operating system environments that are actively supported by their vendors and have not reached their End of Support (EOS) or End of Life (EOL). Once an operating system environment reaches its end of support, Snyk will cease testing and providing support for Snyk CLI in that specific environment.
+Snyk CLI is designed and expected to run on operating system environments that are actively supported by their vendors and have not reached their End of Support (EOS) or End of Life (EOL). After an operating system environment reaches its end of support, Snyk ceases testing and providing support for Snyk CLI in that specific environment.
{% endhint %}
| OS\Architecture | amd64 (minimum requirements) | arm64 (minimum requirements) |
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/README.md
index 7fbeb99a7cfc..ec6bb5cc6f91 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/README.md
@@ -12,7 +12,7 @@ The remaining pages address [Scanning Projects](./#scanning-projects), [Monitori
* [The .snyk file](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies/the-.snyk-file)
* [A .snyk policy file in a different directory from the manifest file](a-.snyk-policy-file-in-a-different-directory-from-the-manifest-file.md)
* [Failing builds in Snyk CLI](failing-of-builds-in-snyk-cli.md)
-* [Ignore vulnerabilties using Snyk CLI](ignore-vulnerabilities-using-the-snyk-cli.md)
+* [Ignore vulnerabilities using Snyk CLI](ignore-vulnerabilities-using-the-snyk-cli.md)
* [Invalid string length error when scanning projects](invalid-string-length-error-when-scanning-projects.md)
* [Scan all unmanaged JAR files](scan-all-unmanaged-jar-files.md)
* [How to select the organization to use in the CLI](how-to-select-the-organization-to-use-in-the-cli.md)
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/a-.snyk-policy-file-in-a-different-directory-from-the-manifest-file.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/a-.snyk-policy-file-in-a-different-directory-from-the-manifest-file.md
index 9971b01f97a9..bb7e22d4ff92 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/a-.snyk-policy-file-in-a-different-directory-from-the-manifest-file.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/a-.snyk-policy-file-in-a-different-directory-from-the-manifest-file.md
@@ -1,6 +1,6 @@
# A .snyk policy file in a different directory from the manifest file
-When you scan a project with the CLI, the `.snyk` policy file may be in a different directory from the manifest file, either because of the structure of the project or because the project has multiple manifest files using the same policy file.
+When you scan a project with the CLI, the `.snyk` policy file might be in a different directory from the manifest file, either because of the structure of the project or because the project has multiple manifest files using the same policy file.
Use the `--policy-path` option to specify a policy path manually for use in scanning or monitoring the project.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-test-results.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-test-results.md
index 1eaf850af365..4bb3a44118d6 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-test-results.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-test-results.md
@@ -1,12 +1,12 @@
# CLI test results
-After you run `snyk test,` a list of vulnerabilities and license issues is displayed directly from the CLI. The list includes:
+After you run `snyk test,` the CLI displays a list of vulnerabilities and license issues directly. The list includes:
* severity
* detailed descriptions of issues
* where relevant, links to more specific details for each issue
-Depending on the language of the project you have tested you may also see fix advice, including details on how you can manually fix the vulnerability.
+Depending on the language of the project you have tested, you might also see fix advice, including details on how you can manually fix the vulnerability.
For more information see:\
[Snyk CLI](../)\
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/README.md
index e1c88f7a7246..68a065c6fcac 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/README.md
@@ -1,5 +1,5 @@
# CLI tools
-The CLI tools extend the user of the Snyk CLI by performing analysis and transformation of output in specific ways. For details, see [`snyk-delta`](snyk-delta.md), [`snyk-filter`](snyk-filter.md), and [`snyk-to-html`](snyk-to-html.md).
+The CLI tools extend the use of the Snyk CLI by performing analysis and transformation of output in specific ways. For details, see [`snyk-delta`](snyk-delta.md), [`snyk-filter`](snyk-filter.md), and [`snyk-to-html`](snyk-to-html.md).
For information about additional tools, see [Snyk Tools](../../../scan-with-snyk/snyk-tools/).
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-delta.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-delta.md
index 08a7a42341fe..06c0d9596a20 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-delta.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-delta.md
@@ -9,7 +9,7 @@ This tool provides the means to get the delta between two Snyk Open Source snaps
* Dependency delta between the two snapshots:
* Direct dependencies added and removed
* Indirect dependencies added and removed
- * Flag path(s) carrying new vulnerabilities
+ * Flag paths carrying new vulnerabilities
## Prerequisites
@@ -33,7 +33,7 @@ You can use this tool inline or as a standalone command.
Use `snyk test --json --print-deps | snyk-delta`
-* You may point to a specific snapshot by specifying org+project coordinates:\
+* You can point to a specific snapshot by specifying org+project coordinates:\
`snyk test --json --print-deps | snyk-delta --baselineOrg xxx --baselineProject xxx`
* Use `--setPassIfNoBaseline` if used with `snyk-prevent_commit_status` and the Project is not monitored. This prevents`snyk-prevent_commit_status` from failing:\
`setPassIfNoBaseline` default to false\
@@ -61,10 +61,10 @@ const result = await getDelta(jsonResultsFromSnykTest);
**The result** is a number:
* 0: no new issue
-* 1: new issue(s) or when using StrictMode and the unmonitored Project has issues (See more details in [StrictMode](snyk-delta.md#strictmode).)
+* 1: new issues or when using StrictMode and the unmonitored Project has issues (See more details in [StrictMode](snyk-delta.md#strictmode).)
* 2: for errors like invalid auth
-Details for issues will be listed on stdout.
+Details for issues are listed on stdout.
## Help for snyk-delta
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-filter.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-filter.md
index 517a466e5ca2..c592156a5428 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-filter.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-filter.md
@@ -31,7 +31,7 @@ sudo npm install -g
3. The exit code from `snyk-filter` is 0 for pass (no issues) and 1 for fail (issues found).
{% hint style="info" %}
-When you use a multi-step approach like `snyk test --json > result-opensource.json` and then pass the results to a plugin, the [exit code](../../cli-commands-and-options-summary.md#exit-codes-for-cli-commands) may stop or break the process on your build system before you get to the step of passing the output file to a tool like `snyk-to-html` or `snyk-filter`. You have several options, depending on the capabilities of your build tools:\
+When you use a multi-step approach like `snyk test --json > result-opensource.json` and then pass the results to a plugin, the [exit code](../../cli-commands-and-options-summary.md#exit-codes-for-cli-commands) might stop or break the process on your build system before you get to the step of passing the output file to a tool like `snyk-to-html` or `snyk-filter`. You have several options, depending on the capabilities of your build tools:\
\
1\) Capture the [exit code](../../cli-commands-and-options-summary.md#exit-codes-for-cli-commands) in a parameter to prevent it from being returned to the process in addition to checking for an error state.\
2\) Use `||true` or some form of logic to prevent the [exit code](../../cli-commands-and-options-summary.md#exit-codes-for-cli-commands) from terminating the process.\
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/README.md
index 9b967f6ae743..300e118aae46 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/README.md
@@ -4,7 +4,7 @@
This tool counts and prints a summary of the contributors count for the last 90 days for any of the following SCMs:
-* Azure Devops
+* Azure DevOps
* Bitbucket Cloud
* Bitbucket Server
* GitHub
@@ -29,15 +29,15 @@ For more information, see the [tool repository README](https://github.com/snyk-t
## **How the SCM-Contributors-Count tool works**
-The tool works in two modes: **Scoping usage prior to onboarding** and **Snyk License Consumption.**
+The tool works in two modes: **Scoping usage before onboarding** and **Snyk License Consumption.**
-* **Scoping usage prior to onboarding:** For users who want to onboard to Snyk and would like to get an estimate of the developer count across their SCMs.\
+* **Scoping usage before onboarding:** For users who want to onboard to Snyk and would like to get an estimate of the developer count across their SCMs.\
In this mode, the tool fetches all the information directly from the SCMs, using the credentials provided by the user.
* **Snyk License Consumption (valid only for Bitbucket and Azure):** For users with an existing Snyk account, who want some clarity and details about their license consumption (number of contributors, names, email, and so on).\
In this mode, the tool fetches the SCM-related projects monitored by Snyk and then matches those to the repos on the SCM and counts the contributors only for those repos/projects.
{% hint style="info" %}
-Note that currently the tool **does not** count emails that end with "noreply.github.com".
+Note that the tool **does not** count emails that end with "noreply.github.com".
{% endhint %}
## Downloading the tool
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/api-rate-limit-control-for-scm-contributors-count.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/api-rate-limit-control-for-scm-contributors-count.md
index 106adb5212be..50f5bb00131f 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/api-rate-limit-control-for-scm-contributors-count.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/api-rate-limit-control-for-scm-contributors-count.md
@@ -16,17 +16,17 @@ The `snyk-scm-contributors-count` tool applies a strict limit of a maximum of 1,
On Bitbucket Server, the system admin has full control of the API rate limiting as described in this [guide](https://confluence.atlassian.com/bitbucketserver/improving-instance-stability-with-rate-limiting-976171954.html).
-The `snyk-scm-contributors-count` tool applies a moderate limit of a max 1000 calls per hour and additional regulating mechanism to deal with 429 responses ("too many calls")
+The `snyk-scm-contributors-count` tool applies a moderate limit of a maximum of 1,000 calls per hour and an additional regulating mechanism to deal with 429 responses ("too many calls").
## GitHub
-On GithHub, the API rate limit is 5,000 calls per hour for authenticated users as described in this [guide](https://docs.github.com/en/developers/apps/building-github-apps/rate-limits-for-github-apps).
+On GitHub, the API rate limit is 5,000 calls per hour for authenticated users as described in this [guide](https://docs.github.com/en/developers/apps/building-github-apps/rate-limits-for-github-apps).
The `snyk-scm-contributors-count` tool applies a strict limit of a maximum of 4,500 calls per hour to deal with the rate limit and an additional regulating mechanism to deal with 429 responses ("too many calls").
## GitHub Enterprise
-On Github Enterprise, the API rate limit is 5,000 calls per hour for authenticated users as described in this [guide](https://docs.github.com/en/developers/apps/building-github-apps/rate-limits-for-github-apps).
+On GitHub Enterprise, the API rate limit is 5,000 calls per hour for authenticated users as described in this [guide](https://docs.github.com/en/developers/apps/building-github-apps/rate-limits-for-github-apps).
The `snyk-scm-contributors-count` tool applies a strict limit of a maximum of 3 calls per second which amounts to 10,800 calls per hour, to deal with the rate limit and an additional regulating mechanism to deal with 429 responses ("too many calls").
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/consolidate-results.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/consolidate-results.md
index aaf0908f360c..aa9fe52ff610 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/consolidate-results.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/consolidate-results.md
@@ -6,13 +6,13 @@ description: How to use the consolidateResults command
## consolidateResults command
-When you work with the SCM-Contributors-Count tool, you may work with more than one source control manager (SCM). You will run a separate command for each SCM to get the contributors count for your repos there.
+When you work with the SCM-Contributors-Count tool, you might work with more than one source control manager (SCM). You run a separate command for each SCM to get the contributors count for your repos there.
For example: If you have a contributor that commits to both GitHub repos and Bitbucket projects, you'll see that contributor's details in the output for both SCMs.
If you want to get an overall picture of all your contributors across all the SCMs, use the `consolidateResults` command.
-This command allows you to take multiple (`json`) outputs of `snyk-scm-contributors-count` commands for different SCMs and consolidate them into one file, with a unique contributors count and a total of the repos from all SCMs.
+This command lets you take multiple (`json`) outputs of `snyk-scm-contributors-count` commands for different SCMs and consolidate them into one file, with a unique contributors count and a total of the repos from all SCMs.
The following options are available for the `consolidateResults` command:
@@ -37,4 +37,4 @@ snyk-scm-contributors-count github-enterprise --token TOKEN --json > PathToFolde
snyk-scm-contributors-count consolidateResults --folderPath PathToFolder
```
-* The tool will then look for valid files in the folder, read the content of the files, create a new file with consolidated, unique results from all the files that have been read, and name the new file`consolidated-results.json`.
+* The tool then looks for valid files in the folder, reads the content of the files, creates a new file with consolidated, unique results from all the files that it read, and names the new file`consolidated-results.json`.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/creating-and-using-the-import-file.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/creating-and-using-the-import-file.md
index 9fc8237b452b..8cc93d43eaa9 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/creating-and-using-the-import-file.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/creating-and-using-the-import-file.md
@@ -8,16 +8,16 @@ description: How to generate the import file and use it with the snyk-api-import
This feature only works with Bitbucket and Azure.
-When the `snyk-scm-contributors-count` tool connects both to your Snyk account and your SCM account, the tools finds out which repos/projects are monitored by Snyk and which are not.
+When the `snyk-scm-contributors-count` tool connects both to your Snyk account and your SCM account, the tool finds out which repos/projects Snyk monitors and which it does not.
When you apply the `importConfDir` and `importFileRepoType` flags to the command, the tool generates an import file populated with the unmonitored repo data, to be used with the [**snyk-api-import** ](creating-and-using-the-import-file.md#using-the-snyk-api-import-tool)tool to import the missing repos to your Snyk account.
-* If the Snyk token was exported and the related Snyk account has an integration set for the specific SCM that is being scanned by the tool, the tool will try to find and match the OrgID and IntegrationID from Snyk as needed by the `snyk-api-import` tool and automatically add it to the import file.
-* If a Snyk token was not exported or the user has no Snyk account yet, this feature can be used to map all repos in the SCM and create the import file to be later used by the `snyk-api-import` tool. In this case or if the tool can not find an OrgID or IntegrationID, the tool prompts the user to supply these IDs (once) and automatically adds them to the import file.
+* If the Snyk token was exported and the related Snyk account has an integration set for the specific SCM that the tool scans, the tool tries to find and match the OrgID and IntegrationID from Snyk as needed by the `snyk-api-import` tool and automatically adds it to the import file.
+* If a Snyk token was not exported or the user has no Snyk account yet, you can use this feature to map all repos in the SCM and create the import file to use later with the `snyk-api-import` tool. In this case, or if the tool cannot find an OrgID or IntegrationID, the tool prompts the user to supply these IDs once and automatically adds them to the import file.
## The import flags
-`importConfDir` - This flag indicates that a query for unmonitored repos should be made and expects a path to a folder (with write privileges) in which to create the json import files, for example :
+`importConfDir` - This flag indicates that the tool should query for unmonitored repos and expects a path to a folder (with write privileges) in which to create the json import files, for example:
```
snyk-scm-contributors-count --token TOKEN -- importConfDir /snyk/import/
@@ -32,11 +32,11 @@ snyk-scm-contributors-count --token TOKEN -- importConfDir /snyk/impor
```
{% hint style="info" %}
-The import file requires an OrgID and IntegrationID from the user in order to import them to the right organization and integration at Snyk.
+The import file requires an OrgID and IntegrationID from the user to import them to the right organization and integration at Snyk.
-The tool will try to find these two values from Snyk (provided that a SNYK\_TOKEN was exported and that the org mapping at Snyk is mirrored to that of the SCM) and if the tool can not find those values, the user will be prompted to supply them in the command line.
+The tool tries to find these two values from Snyk (provided that a SNYK\_TOKEN was exported and that the org mapping at Snyk is mirrored to that of the SCM), and if the tool cannot find those values, it prompts the user to supply them in the command line.
-Once the user has stated the values for OrgID and IntegrationID once, these values will be set for ALL the entries in the import file (meaning that all the imported repos will be under the same org in Snyk).
+After the user states the values for OrgID and IntegrationID once, the tool sets these values for ALL the entries in the import file (meaning that all the imported repos are under the same org in Snyk).
{% endhint %}
## Using the snyk-api-import tool
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/output.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/output.md
index 7652169d4ea2..7a23ffe14b52 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/output.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/output.md
@@ -89,7 +89,7 @@ Next to each repository name, there is an indication of its visibility, either (
* `email` - The email of the contributor
* `contributionsCount` - The number of the times this contributor has contributed to the repo/s.
* `repoContributedTo` - A list of the repo/repos to which this contributor has contributed.
-* `(duplicate)` - Indicator that the same user has been detected from different email addresses; note that they will be counted as **different committers**.
+* `(duplicate)` - Indicator that the same user has been detected from different email addresses; note that they are counted as **different committers**.
{% hint style="info" %}
As the output can be long, Snyk recommends sending the output to a file for better review and parsing options.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/README.md
index 58a0b448e9c3..053132ffc5b7 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/README.md
@@ -6,7 +6,7 @@ description: A detailed guide to the specific SCM-Contributor-Count scripts
The following scripts are provided:
-* [Azure Devops](azure-devops/)
+* [Azure DevOps](azure-devops/)
* [Bitbucket Cloud](bitbucket-cloud/)
* [Bitbucket Server](bitbucket-server/)
* [GitHub](github/)
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-examples.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-examples.md
index 89296f3b3bea..be753648bec7 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-examples.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-examples.md
@@ -24,17 +24,17 @@ The following options are available for the `snyk-scm-contributors-count azure d
## Before running the command
1. Export SNYK\_TOKEN (if you want to get the contributors only for repos that are already monitored by Snyk):
- * Make sure that your token has Group level access or use a service account's token that has Group level access. To learn more about how to create a service account, refer to [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
+ * Ensure that your token has Group level access or use a service account token that has Group level access. To learn more about how to create a service account, refer to [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
* Copy the token value.
* Export the token in your environment:
```
export SNYK_TOKEN=
```
-2. Get your Azure Devops Token and Org:
+2. Get your Azure DevOps token and Org:
* Create a Token if one does not exist, using this [guide](https://docs.microsoft.com/en-us/azure/devops/organizations/accounts/use-personal-access-tokens-to-authenticate?view=azure-devops\&tabs=preview-page).
- **Note**: Make sure your token has read access to the repos.
+ **Note**: Ensure your token has read access to the repos.
* Find your Org name in Azure listed on the left pane on the [Azure DevOps site](https://dev.azure.com).
## Running the command
@@ -43,17 +43,17 @@ Consider the following levels of usage and options:
### Usage levels
-* To get commits for all projects and their repos under my Org in Azure , only provide the Azure token and Azure Org:
+* To get commits for all projects and their repos under your Org in Azure, provide only the Azure token and Azure Org:
```
snyk-scm-contributors-count azure-devops --token AZURE-TOKEN --org AZURE-ORG
```
-* To get commits for some projects and their repos under my Org in Azure , provide the Azure token, Azure Org and the project key/s separated by a comma:
+* To get commits for some projects and their repos under your Org in Azure, provide the Azure token, Azure Org, and the project keys separated by a comma:
```
snyk-scm-contributors-count azure-devops --token AZURE-TOKEN --org AZURE-ORG --projectKeys Key1,Key2...
```
-* To get commits for a specific repo under my Org in Azure , provide the Azure token, Azure Org, a project key and a repo name:
+* To get commits for a specific repo under your Org in Azure, provide the Azure token, Azure Org, a project key, and a repo name:
```
snyk-scm-contributors-count azure-devops --token AZURE-TOKEN --org AZURE-ORG --projectKeys Key1 --repo Repo1
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-flow-and-tech.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-flow-and-tech.md
index c4004e0b6ffe..fd1850e9b381 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-flow-and-tech.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/azure-devops/azure-flow-and-tech.md
@@ -6,7 +6,7 @@
2. Fetch `one`/`some`/`all` the projects that the credentials have access to from SCM and create a projects list.
3. Fetch `one`/`all` repos under the fetched/provided Projects.
4. Remove the repos that are not monitored by Snyk (if the `skipSnykMonitoredRepos` flag was **not set** and the `SNYK_TOKEN` was exported) and create a Repo list.
-5. Create an import file for unmonitored repos to use for easily importing repos into your Snyk account (if the `importConfDir` flag was set).
+5. Create an import file for unmonitored repos to use for importing repos into your Snyk account (if the `importConfDir` flag was set).
6. Fetch the commits for the fetched/provided repo/s and create a Contributors list.
7. Count the commits for the repo/s by the contributors.
8. Remove the contributors that were specified in the exclusion file (if `the exclusionFilePath` flag was set and a valid path to a text file was provided).
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-examples.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-examples.md
index e836a63daa86..60fed1f2e5fb 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-examples.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-examples.md
@@ -23,7 +23,7 @@ The following options are available for the `snyk-scm-contributors-count bitbuck
## Before running the command
1. Export SNYK\_TOKEN (if you want to get the contributors only for repos that are already monitored by Snyk):
- * Make sure that your token has Group level access or use a service account's token that has Group level access. To learn more about how to create a service account, refer to [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
+ * Ensure that your token has Group level access or use a service account token that has Group level access. To learn more about how to create a service account, refer to [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
* Copy the token value.
* Export the token in your environment:
@@ -32,7 +32,7 @@ The following options are available for the `snyk-scm-contributors-count bitbuck
```
2. Get your Bitbucket Cloud username (**not email**) and [app password](https://developer.atlassian.com/cloud/bitbucket/rest/intro/#authentication)
- **Note**: Make sure your credentials have read access to the repos.
+ **Note**: Ensure your credentials have read access to the repos.
## Running the command
@@ -64,7 +64,7 @@ Consider the following levels of usage and options:
```
snyk-scm-contributors-count bitbucket-cloud --user USERNAME --password APP_PASSWORD --skipSnykMonitoredRepos
```
-* To exclude some contributors from being counted in the commits , add an exclusion file with the emails to ignore (separated by a new line),and apply the `--exclusionFilePath` with the path to that file:
+* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore (separated by a new line), and apply the `--exclusionFilePath` with the path to that file:
```
snyk-scm-contributors-count bitbucket-cloud --user USERNAME --password APP_PASSWORD --workspaces Workspace1,Workspace2 --exclusionFilePath PATH_TO_FILE
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-flow-and-tech.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-flow-and-tech.md
index e9df11d1fcd0..5eeb61c72ddb 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-flow-and-tech.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-cloud/bitbucket-cloud-flow-and-tech.md
@@ -6,7 +6,7 @@
2. Fetch `one`/`some`/`all` the workspaces that the credentials have access to from SCM and create a workspaces list.
3. Fetch `one`/`all` repos under the fetched/provided workspaces.
4. Remove the repos that are not monitored by Snyk (if the `skipSnykMonitoredRepos` flag was **not set** and the `SNYK_TOKEN` was exported) and create a Repo list.
-5. Create an import file for unmonitored repos to use for easily importing repos into your Snyk account (if the `importConfDir` flag was set)
+5. Create an import file for unmonitored repos to use for importing repos into your Snyk account (if the `importConfDir` flag was set)
6. Fetch the commits for the fetched/provided repo/s and create a Contributors list.
7. Count the commits for the repo/s by the contributors.
8. Remove the contributors that were specified in the exclusion file (if `the exclusionFilePath` flag was set and a valid path to a text file was provided).
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-examples.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-examples.md
index 0454d6d4ee6c..9b093b468ffe 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-examples.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-examples.md
@@ -23,7 +23,7 @@ The following options are available for the `snyk-scm-contributors-count bitbuck
## Before running the command
1. Export SNYK\_TOKEN (if you want to get the contributors ONLY for repos that are already monitored by Snyk):
- * Make sure that your token has Group level access or use a service account's token that has Group level access. To learn more on how to create a service account, refer to [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
+ * Ensure that your token has Group level access or use a service account token that has Group level access. To learn more about how to create a service account, refer to [Service accounts](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/service-accounts/service-accounts).
* Copy the token value.
* Export the token in your environment:
@@ -33,7 +33,7 @@ The following options are available for the `snyk-scm-contributors-count bitbuck
2. Get your Bitbucket Server token and URL:
* Create a Token if one does not exist, using this [guide](https://www.jetbrains.com/help/youtrack/standalone/integration-with-bitbucket-server.html#enable-youtrack-integration-bbserver).
- **Note**: Make sure your token has read access to the repos.
+ **Note**: Ensure your token has read access to the repos.
* The URL is the actual URL of your Bitbucket Server instance, for example, http://bitbucket-server.mycompany.com.
## Running the command
@@ -47,12 +47,12 @@ Consider the following levels of usage and options:
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL
```
-* To get commits for some projects and their repos in Bitbucket Server, provide the Bitbucket Server token, Bitbucket Server url ,and the projects, separated by a comma:
+* To get commits for some projects and their repos in Bitbucket Server, provide the Bitbucket Server token, Bitbucket Server url, and the projects, separated by a comma:
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL --projectKeys Key1,Key2...
```
-* To get commits for a specific repo in Bitbucket Serve, provide your Bitbucket Server token, Bitbucket Server url, a project, and a repo name:
+* To get commits for a specific repo in Bitbucket Server, provide your Bitbucket Server token, Bitbucket Server url, a project, and a repo name:
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL --projectKeys Key1 --repo Repo1
@@ -61,12 +61,12 @@ Consider the following levels of usage and options:
### Options
* To get all the commits from Bitbucket Server regardless of the repos that are already monitored by Snyk, add the `--skipSnykMonitoredRepos` flag.\
- You might have repos in Bitbucket Server that are not monitored in Snyk,. Use this flag to skip checking for Snyk monitored repos and go directly to Bitbucket Server to fetch the commits.
+ You might have repos in Bitbucket Server that are not monitored in Snyk. Use this flag to skip checking for Snyk monitored repos and go directly to Bitbucket Server to fetch the commits.
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL --skipSnykMonitoredRepos
```
-* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore(separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
+* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore (separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL --projectKeys Key1,Key2 --exclusionFilePath PATH_TO_FILE
@@ -76,13 +76,13 @@ Consider the following levels of usage and options:
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL --projectKeys Key1 --repo Repo1 --json
```
-* To create an import file for me with my unmonitored repos, add the `--importConfDir` flag with a valid (writable) path to a folder in which the import files will be stored and add the `--importFileRepoType` flag (optional) with the repo types to add to the file (`all`/`private`/`public`, defaults to `all`). Note that these flags **can not** be set with the `--repo` flag.
+* To create an import file for your unmonitored repos, add the `--importConfDir` flag with a valid (writable) path to a folder in which the import files will be stored and add the `--importFileRepoType` flag (optional) with the repo types to add to the file (`all`/`private`/`public`, defaults to `all`). Note that these flags **can not** be set with the `--repo` flag.
```
snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN --url BITBUCKET-URL --importConfDir ValidPathToFolder --importFileRepoType private/public/all
```
- For more information about these flag, refer to [Creating and using the import file](../../creating-and-using-the-import-file.md).
+ For more information about these flags, refer to [Creating and using the import file](../../creating-and-using-the-import-file.md).
* To run in debug mode for verbose output, add `DEBUG=snyk*` to the beginning of the command:
```
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-flow-and-tech.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-flow-and-tech.md
index a505a646c330..83f8b45b4a5f 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-flow-and-tech.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/bitbucket-server/bitbucket-server-flow-and-tech.md
@@ -6,7 +6,7 @@
2. Fetch `one`/`some`/`all` the projects that the credentials have access to from SCM and create a projects list.
3. Fetch `one`/`all` repos under the fetched/provided projects.
4. Remove the repos that are not monitored by Snyk (if the `skipSnykMonitoredRepos` flag was **not set** and the `SNYK_TOKEN` was exported) and create a Repo list.
-5. Create an import file for unmonitored repos to use for easily importing repos into Snyk account (if the `importConfDir` flag was set).
+5. Create an import file for unmonitored repos to use for importing repos into your Snyk account (if the `importConfDir` flag was set).
6. Fetch the commits for the fetched/provided repo/s and create a Contributors list.
7. Count the commits for the repo/s by the contributors.
8. Remove the contributors that were specified in the exclusion file (if `the exclusionFilePath` flag was set and a valid path to a text file was provided).
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github-enterprise/github-enterprise-examples.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github-enterprise/github-enterprise-examples.md
index 50179c563d0e..25c3f6ac2545 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github-enterprise/github-enterprise-examples.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github-enterprise/github-enterprise-examples.md
@@ -2,7 +2,7 @@
description: The list of options and some examples
---
-# Github Enterprise - Examples
+# GitHub Enterprise - Examples
The following options are available for the `snyk-scm-contributors-count github-enterprise` command:
@@ -25,7 +25,7 @@ The following options are available for the `snyk-scm-contributors-count github-
Get your GitHub Enterprise token or create a new one with this [guide](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token).
-**Note:** Make sure your token has read access to the repos.
+**Note:** Ensure your token has read access to the repos.
## Running the command
@@ -57,12 +57,12 @@ Consider the following levels of usage and options:
snyk-scm-contributors-count github-enterprise --token TOKEN --url HOST_URL --fetchAllOrgs
```
-* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore(separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
+* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore (separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
```
snyk-scm-contributors-count github-enterprise --token TOKEN --url HOST_URL --orgs ORG_ONE,ORG_TWO --exclusionFilePath PATH_TO_FILE
```
-* To set the output to json format, dd the `--json` flag:
+* To set the output to json format, add the `--json` flag:
```
snyk-scm-contributors-count github-enterprise --token TOKEN --url HOST_URL --json
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github/github-examples.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github/github-examples.md
index 3e980ec7f28b..7a69d3fcca24 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github/github-examples.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/github/github-examples.md
@@ -21,7 +21,7 @@ Available options:
Get your GitHub token or create a new one with this [guide](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token).
-**Note:** Make sure your token has read access to the repos.
+**Note:** Ensure your token has read access to the repos.
## Running the command
@@ -34,12 +34,12 @@ Consider the following levels of usage and options:
```
snyk-scm-contributors-count github --token TOKEN
```
-* To get commits for some Orgs and their repos in GitHub:, provide the GitHub token and the org names, separated by a comma:
+* To get commits for some Orgs and their repos in GitHub, provide the GitHub token and the org names, separated by a comma:
```
snyk-scm-contributors-count github --token TOKEN --orgs ORG_ONE,ORG_TWO,ORG_THREE
```
-* To get commits for only one repo in GitHub, provide the GitHub token, one org name ,and one repo name:
+* To get commits for only one repo in GitHub, provide the GitHub token, one org name, and one repo name:
```
snyk-scm-contributors-count github --token TOKEN --orgs ORG --repo REPO
@@ -47,13 +47,13 @@ Consider the following levels of usage and options:
### Options
-* To exclude some contributors from being counted in the commits , add an exclusion file with the emails to ignore(separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
+* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore (separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
```
snyk-scm-contributors-count github --token TOKEN --orgs ORG_ONE,ORG_TWO --exclusionFilePath PATH_TO_FILE
```
-* To set the output to json format, dd the `--json` flag:
+* To set the output to json format, add the `--json` flag:
```
snyk-scm-contributors-count github --token TOKEN --json
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-examples.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-examples.md
index 087523395948..ac20140e2ee2 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-examples.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-examples.md
@@ -23,7 +23,7 @@ The following options are available for the `snyk-scm-contributors-count gitlab`
Get your GitLab token or create a new one with this [guide](https://docs.gitlab.com/ee/user/profile/personal_access_tokens.html).
-**Note:** Make sure your token has read access to the repos.
+**Note:** Ensure your token has read access to the repos.
## Running the command
@@ -54,7 +54,7 @@ Note that for nested groups, you need to provide the lowest level group name, fo
### Options
-* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore(separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
+* To exclude some contributors from being counted in the commits, add an exclusion file with the emails to ignore (separated by a new line) and apply the `--exclusionFilePath` with the path to that file:
```
snyk-scm-contributors-count gitlab --token TOKEN --projectKeys ID1,ID2,Path1/Namespace1 --exclusionFilePath PATH_TO_FILE
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-flow-and-tech.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-flow-and-tech.md
index a4c9a99e4142..104234b1c004 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-flow-and-tech.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/scripts-for-scm-contributors-count/gitlab-and-gitlab-server/gitlab-flow-and-tech.md
@@ -5,7 +5,7 @@
1. Set GitLab or GitLab Server mode (if a host was provided or not through the `url` flag).
2. Fetch `one`/`some`/`all` the groups that the credentials have access to from the SCM and create a groups list.
3. Fetch `one`/`all` projects under the fetched/provided groups.
-4. Create an import file for unmonitored repos to use for easily importing repos into your Snyk account (if the `importConfDir` flag was set)
+4. Create an import file for unmonitored repos to use for importing repos into your Snyk account (if the `importConfDir` flag was set)
5. Fetch the commits for the fetched/provided project/s and create a Contributors list.
6. Count the commits for the project/s by the contributors.
7. Remove the contributors that were specified in the exclusion file (if `the exclusionFilePath` flag was set and a valid path to a text file was provided).
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/usage.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/usage.md
index 768cac81589c..cc53c09371ac 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/usage.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-scm-contributors-count/usage.md
@@ -24,7 +24,7 @@ snyk-scm-contributors-count
## Modes
-### Scoping usage prior to onboarding
+### Scoping usage before onboarding
This mode works only with Bitbucket and Azure.
@@ -38,7 +38,7 @@ snyk-scm-contributors-count bitbucket-cloud --user USERNAME --password PASSWORD
This mode works only with Bitbucket and Azure.
-Make sure to export your `SNYK_TOKEN`, for example:
+Ensure you export your `SNYK_TOKEN`, for example:
```
export SNYK_TOKEN=
@@ -51,7 +51,7 @@ snyk-scm-contributors-count bitbucket-cloud --user USERNAME --password PASSWORD
In this level of usage, the tool starts from the top of the SCM to get the Orgs/Groups, then goes down to the repo level to get all the repos, then counts the commits for the past 90 days.
-To use this level, provide the credentials (and host/url where applicable), and the tool will get the contributors count for all your orgs/groups and all their repos, for example:
+To use this level, provide the credentials (and host/url where applicable), and the tool gets the contributors count for all your orgs/groups and all their repos, for example:
```
snyk-scm-contributors-count github --token TOKEN
@@ -61,7 +61,7 @@ snyk-scm-contributors-count github --token TOKEN
In this level of usage, the tool starts from the Orgs/Groups that the user provides, then goes down to the repo level to get all the repos, then count the commits for the past 90 days.
-To use this level, provide the credentials and a comma-separated list of groups or orgs for which you'd like to fetch the repos and their contributors count, for example:
+To use this level, provide the credentials and a comma-separated list of groups or orgs for which you want to fetch the repos and their contributors count, for example:
```
snyk-scm-contributors-count gitlab --token TOKEN --groups GROUP1,GROUP2
@@ -89,9 +89,9 @@ DEBUG=snyk* snyk-scm-contributors-count bitbucket-server --token BITBUCKET-TOKEN
Additional flags can be set for the command:
-* Create an **import file** with unmonitored repos data to use with the `snyk-api-import` tool and import the repos to `my Snyk account`. Works only with Bitbucket and Azure. Apply the `importConfDir` flag with a path to a valid and writable folder where you will save the import files. This flag correlates with the `importFileRepoType` flag.
+* Create an **import file** with unmonitored repos data to use with the `snyk-api-import` tool and import the repos to `my Snyk account`. Works only with Bitbucket and Azure. Apply the `importConfDir` flag with a path to a valid and writable folder where you save the import files. This flag correlates with the `importFileRepoType` flag.
* Choose which **types of repos to add to the import file**. Works only with Bitbucket and Azure. Apply the `importFileRepoType` flag with one of these options: `all,` `private`, or `public`**.**
-* **Exclude committers from being counted**. Apply the `exclusionFilePath` flag to the command with a path to a text file that contains the emails of the committers that you would like to be excluded from the count.
+* **Exclude committers from being counted**. Apply the `exclusionFilePath` flag to the command with a path to a text file that contains the emails of the committers you want to exclude from the count.
* Output the summary and results in a json format. Apply the `json` flag to the command.
## The consolidateResults command
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md
index ddf22c8e80a1..aab2cb9eb4fc 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/cli-tools/snyk-to-html.md
@@ -10,14 +10,14 @@ You can use `snyk-to-html` (the Snyk JSON to HTML Mapper) to:
This page explains how to [install `snyk-to-html`](snyk-to-html.md#install-snyk-to-html), [use the `snyk-to-html` tool](snyk-to-html.md#use-the-snyk-to-html-tool) to export the test results in JSON or SARIF format to an HTML file, and [view the test results in a browser](snyk-to-html.md#view-test-results-in-html-format).
{% hint style="warning" %}
-Note, only `json` output is supported for Open Source (SCA) scans. `sarif` output will return no results from the `snyk-to-html` process for Open Source tests.
+Note that Snyk supports only `json` output for Open Source (SCA) scans. `sarif` output returns no results from the `snyk-to-html` process for Open Source tests.
{% endhint %}
## Install `snyk-to-html`
To install `snyk-to-html`, you must have the required permissions on your machine. If the installation fails, contact your IT administrator to request the required permissions.
-You can install `snyk-to-html`using npm:
+You can install `snyk-to-html` using npm:
```
npm install snyk-to-html -g
@@ -43,7 +43,7 @@ When you run the `snyk-to-html` command, you can customize it with the following
The `snyk-to-html` command does not generate the standard exit codes.
-To display the help for `snyk-to-html`Use the command `snyk-to-html --help` or `--h`.
+To display the help for `snyk-to-html`, use the command `snyk-to-html --help` or `--h`.
If you want to use the `snyk-to-html` command in a CI/CD pipeline, see the [Snyk CI/CD integration examples](https://github.com/snyk-labs/snyk-cicd-integration-examples/blob/master/AzurePipelines/AzurePipelines-npm-generic-html.yml) for an example of a workaround for Azure Pipelines.
@@ -84,7 +84,7 @@ Navigate to the subfolder with the related files and run the following line to c
### Convert a JSON or SARIF file to HTML to view in a browser
-For automation purposes, you may be creating a JSON file for programmatic access to the results or already have one from a previous scan. You can send this JSON output to `snyk-to-html` to generate an HTML file.
+For automation purposes, you might create a JSON file for programmatic access to the results or already have one from a previous scan. You can send this JSON output to `snyk-to-html` to generate an HTML file.
Follow these steps to run `snyk test` and then convert the output file to HTML.
@@ -117,7 +117,7 @@ Note that when you do this, any return code is ignored, such as error codes sign
### Use `snyk-to-html` command options
-The following examples show the snyk test command; however, they will also work with the `snyk test` commands for container, code, and IaC.
+The following examples show the `snyk test` command; they also work with the `snyk test` commands for container, code, and IaC.
#### Show a simple version of the report
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/failing-of-builds-in-snyk-cli.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/failing-of-builds-in-snyk-cli.md
index e14c4b354a8a..3753ceffd47a 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/failing-of-builds-in-snyk-cli.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/failing-of-builds-in-snyk-cli.md
@@ -14,7 +14,7 @@ The Snyk CLI on its own does not have the capability natively to fail tests on m
## Combining security policies with --severity-threshold
-[Security policies](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies) provide the capability to change the severity of a vulnerability, when a Project is tested against an Organization using that policy and the severity matches specific criteria. You could, for example, change the severity of a vulnerability from high to low, and if you run `snyk test` with the option `--severity-threshold=medium|high`, this previously high severity vulnerability no longer fails the build.
+[Security policies](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies) let you change the severity of a vulnerability when a Project is tested against an Organization using that policy and the severity matches specific criteria. You could, for example, change the severity of a vulnerability from high to low, and if you run `snyk test` with the option `--severity-threshold=medium|high`, this previously high severity vulnerability no longer fails the build.
{% hint style="info" %}
Security policies do not have all attributes available for criteria matching. Refer to the security policy configuration to see what is available.
@@ -32,17 +32,17 @@ The following example shows the`snyk test` command with the option `--severity-t
The CLI has companion tools for Open Source scanning `snyk-delta` and `snyk-filter`.
-`snyk-delta` finds the delta of vulnerabilities between the current test and a previously monitored snapshot. This tool is available from npmjs.org, and may be pulled into your CI/CD pipeline by running `npm install -g snyk-delta`.
+`snyk-delta` finds the delta of vulnerabilities between the current test and a previously monitored snapshot. This tool is available from npmjs.org, and you can pull it into your CI/CD pipeline by running `npm install -g snyk-delta`.
-`snyk-filter` provides for user-defined pass/fail criteria based on any available data in the `snyk test` JSON output. This tool is available from npmjs.org and may be pulled into your CI/CD pipeline by running `npm install -g snyk-filter`.
+`snyk-filter` provides for user-defined pass/fail criteria based on any available data in the `snyk test` JSON output. This tool is available from npmjs.org, and you can pull it into your CI/CD pipeline by running `npm install -g snyk-filter`.
### Fail current build only if new vulnerabilities are being introduced
#### inline mode for `snyk delta`
-This is a simple example: `snyk test --json --print-deps | snyk-delta`
+Example: `snyk test --json --print-deps | snyk-delta`
-This example possibly points to a specific snapshot by specifying Organization and Project coordinates.
+This example points to a specific snapshot by specifying Organization and Project coordinates.
`snyk test --json --print-deps | snyk-delta --baselineOrg xxx --baselineProject xxx`
@@ -60,6 +60,6 @@ Refer to the [snyk-delta project on GitHub](https://github.com/snyk-tech-service
`snyk-filter` can use any combination of criteria available in the `snyk test` JSON output.
-You may also have different criteria for display from what will fail the build. This allows you to do things like display all vulnerabilities in the test output while failing only on some specific criteria.
+You can also have different criteria for display from what fails the build. This lets you do things like display all vulnerabilities in the test output while failing only on some specific criteria.
Refer to the [snyk-filter project on GitHub](https://github.com/snyk-tech-services/snyk-filter) for examples and more information.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/group-projects-by-branch-or-version-for-monitoring.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/group-projects-by-branch-or-version-for-monitoring.md
index 95de814c9f70..37a7e336d91b 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/group-projects-by-branch-or-version-for-monitoring.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/group-projects-by-branch-or-version-for-monitoring.md
@@ -24,8 +24,8 @@ Use the latest Git tag.
snyk monitor --target-reference="$(git describe --tags --abbrev=0)"
```
-You can adjust the option for the developer tools used in your project. Any valid Git target can be used.
+You can adjust the option for the developer tools used in your project. You can use any valid Git target.
-`--target-reference` allows you to create sub-groupings on the Projects page.
+`--target-reference` lets you create sub-groupings on the Projects page.
A Project page with sub-groups.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/how-to-select-the-organization-to-use-in-the-cli.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/how-to-select-the-organization-to-use-in-the-cli.md
index b7d8eeb5eca7..8955f7db7189 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/how-to-select-the-organization-to-use-in-the-cli.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/how-to-select-the-organization-to-use-in-the-cli.md
@@ -1,8 +1,8 @@
# How to select the Organization to use in the CLI
-When you run commands with the CLI such as `snyk monitor` and `snyk test`, Snyk uses your `Preferred Organization`, which can be configured in your account. If you want commands to run against a different Organization, you can specify that Organization either globally or individually.
+When you run commands with the CLI such as `snyk monitor` and `snyk test`, Snyk uses your `Preferred Organization`, which you can configure in your account. If you want commands to run against a different Organization, you can specify that Organization either globally or individually.
-**Note**: The Snyk CLI help specifies using `--org=`; this article specifies using the `orgslugname`. The `ORG_ID` works in both the CLI and the API. The organization slug name works in the CLI, but not in the API.
+**Note**: The Snyk CLI help specifies using `--org=`; this page specifies using the `orgslugname`. The `ORG_ID` works in both the CLI and the API. The organization slug name works in the CLI, but not in the API.
## Specify an Organization globally
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/ignore-vulnerabilities-using-the-snyk-cli.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/ignore-vulnerabilities-using-the-snyk-cli.md
index c8cb1e03c2ad..8d5ad0c5a5c9 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/ignore-vulnerabilities-using-the-snyk-cli.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/ignore-vulnerabilities-using-the-snyk-cli.md
@@ -10,9 +10,9 @@ For [Snyk Infrastructure as Code](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2
For [Snyk Code](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-code), see [Excluding directories and files from the Snyk Code CLI test](snyk-cli-for-snyk-code/exclude-directories-and-files-from-snyk-code-cli-tests.md).
{% endhint %}
-Sometimes, Snyk alerts you to a vulnerability that has no update or Snyk patch available, or that you do not believe to be currently exploitable in your application. When this happens you may want to tell Snyk to ignore the vulnerability for a certain period of time.
+Sometimes, Snyk alerts you to a vulnerability that has no update or Snyk patch available, or that you do not believe to be exploitable in your application. When this happens, you can tell Snyk to ignore the vulnerability for a period of time.
-You can ignore a specific vulnerability in a project using the `snyk ignore` command.
+You can ignore a specific vulnerability in a Project using the `snyk ignore` command.
`snyk ignore --id= [--expiry=] [--reason=] [--policy-path=] []`
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/invalid-string-length-error-when-scanning-projects.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/invalid-string-length-error-when-scanning-projects.md
index 6ee470d4f4e8..2b57b6c6743f 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/invalid-string-length-error-when-scanning-projects.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/invalid-string-length-error-when-scanning-projects.md
@@ -8,7 +8,7 @@ The invalid string length error can occur in the following situations:
You can use the following workarounds to avoid the invalid string length error.
* Remove the `--json` or `--json-file-output=` option. This may not be possible in integrations using the CLI, for example, CI/CD integrations.
-* If you require the JSON output, try increasing the severity threshold using the `--severity-threshold=` option. This is likely to reduce the number of less critical vulnerabilities reported and thus reduce the size of the JSON file output.
+* If you require the JSON output, try increasing the severity threshold using the `--severity-threshold=` option. This reduces the number of less critical vulnerabilities reported and reduces the size of the JSON file output.
* If you are scanning multiple Projects using the `--all-projects` option, try removing this option and scanning Projects individually.
* Another method of reducing the JSON output is adding the `--prune-repeated-subdependencies` option. This may sufficiently reduce the size of the resulting scan so the JSON can be resolved.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/log4shell-command-use.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/log4shell-command-use.md
index a1f7d95d7fc7..b6583e84b8f8 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/log4shell-command-use.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/log4shell-command-use.md
@@ -24,7 +24,7 @@ Use `snyk log4shell` to scan a Java project, to see if the project includes:
## How to run
1. Install the latest version of the Snyk CLI - see [Install the Snyk CLI](../install-the-snyk-cli/).
-2. Make sure you have built the project.
+2. Ensure you have built the project.
3. Navigate to the project directory to scan.
4. Enter `snyk log4shell`.\
**Note**: this command does not require (nor support) any additional arguments.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/monitor-your-projects-at-regular-intervals.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/monitor-your-projects-at-regular-intervals.md
index fbe10052cf2d..3952a380f9ce 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/monitor-your-projects-at-regular-intervals.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/monitor-your-projects-at-regular-intervals.md
@@ -2,7 +2,7 @@
By using the `test` command and the `@snyk/protect` [package](https://github.com/snyk/snyk/tree/master/packages/snyk-protect) (replaced the snyk `protect` command), you are well set up to address known vulnerabilities. To address new vulnerabilities, which are constantly disclosed, use snyk monitor.
-Just before you deploy, run `snyk monitor` in your project directory:
+Before you deploy, run `snyk monitor` in your project directory:
`cd ~/projects/myproject/`\
`snyk monitor`
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/scan-all-unmanaged-jar-files.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/scan-all-unmanaged-jar-files.md
index 399239edb2bc..7c08be0d3b65 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/scan-all-unmanaged-jar-files.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/scan-all-unmanaged-jar-files.md
@@ -12,7 +12,7 @@ To scan each JAR file individually, use the following command:
`snyk test --scan-unmanaged --file=/path/to/file`
-When you test each JAR file individually, the name of the JAR file that was scanned appears on the Snyk web UI.
+When you test each JAR file individually, the name of the scanned JAR file appears in the Snyk Web UI.
**WAR file support**: You can scan individual WAR files that are published in Maven Central. To scan open-source dependency JARs directly, you must extract (unzip) all other WAR files or JAR files containing other JARs.
@@ -111,6 +111,6 @@ SET REMOTE_REPO_URL=%2
for /R %WORKSPACE% %%f in (*.jar) do cmd /c snyk monitor --scan-unmanaged --remote-repo-url=%REMOTE_REPO_URL% --file=%%f --project-name=%%f
```
-An example follows of the result shown in the Snyk UI after you use these scripts with `REMOTE_REPO_URL` set to "econnect".
+An example follows of the result shown in the Snyk Web UI after you use these scripts with `REMOTE_REPO_URL` set to "econnect".
Result of scanning unmanaged JAR files
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/README.md
index 79c09c4f3c6d..cae5a4093f01 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/README.md
@@ -18,10 +18,10 @@ Snyk Infrastructure as Code has no equivalent command to `snyk monitor` because
For IaC CLI results to appear in the Snyk Web UI, use [`snyk iac test --report`](share-cli-results-with-the-snyk-web-ui.md) to capture a one-time snapshot. Optionally, run the command on a recurring schedule to regularly test your IaC files.
-Alternatively, you can add an [SCM integration](../../../scm-integrations/organization-level-integrations/), and Snyk will monitor and test a given Git repository on a recurring basis.
+Alternatively, you can add an [SCM integration](../../../scm-integrations/organization-level-integrations/), and Snyk monitors and tests a given Git repository on a recurring basis.
## Using Snyk behind a proxy
If you are using a proxy, see [Proxy configuration for Snyk CLI](../../configure-the-snyk-cli/proxy-configuration-for-snyk-cli.md).
-For IaC scans specifically, you must also whitelist the \*.snyk.io address, as explained on the page [How can we allowlist Snyk IP addresses](https://support.snyk.io/s/article/How-can-we-allowlist-Snyk-IP-addresses)?
+For IaC scans specifically, you must also allowlist the \*.snyk.io address, as explained on the page [How can we allowlist Snyk IP addresses](https://support.snyk.io/s/article/How-can-we-allowlist-Snyk-IP-addresses)?
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-exclusions-using-the-command-line.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-exclusions-using-the-command-line.md
index e137adef597c..a7306b82da1b 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-exclusions-using-the-command-line.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-exclusions-using-the-command-line.md
@@ -1,14 +1,14 @@
# IaC exclusions using the command line
-When you scan directories or a large collection of IaC files using the Snyk CLI `iac test` command, it is easy to include unwanted files or directories in your scan by mistake. When this happens, use your command line tools to exclude specific files or directories from the scan. This page describes some solutions to the most typical use cases.
+When you scan directories or a large collection of IaC files using the Snyk CLI `iac test` command, you can include unwanted files or directories in your scan by mistake. When this happens, use your command line tools to exclude specific files or directories from the scan. This page describes some solutions to the most typical use cases.
{% hint style="info" %}
-The following examples use command line tools like `find` and `xargs` that are widespread in UNIX-like environments. Make sure that the tools are available on your platform.
+The following examples use command line tools like `find` and `xargs` that are widespread in UNIX-like environments. Ensure the tools are available on your platform.
{% endhint %}
## Exclude files of the wrong type
-Sometimes your Projects contain different kinds of files, and you want to scan only files with a specific extension, excluding everything else. The following command scans only files with a `.tf` extension contained in the current working directory and its subdirectories. Files that do not have a `.tf` extension will not be scanned.
+Sometimes your Projects contain different kinds of files, and you want to scan only files with a specific extension, excluding everything else. The following command scans only files with a `.tf` extension contained in the current working directory and its subdirectories. Files that do not have a `.tf` extension are not scanned.
```
find . -type file -name '*.tf' | xargs snyk iac test
@@ -16,7 +16,7 @@ find . -type file -name '*.tf' | xargs snyk iac test
## Exclude directories by name
-In very large projects, it is common to save files that have different purposes in distinct directories. For example, you might save IaC files for your development, staging, and production environments in different directories. When scanning such Projects, you may want to exclude some of these directories. This command scans every file with a `.tf` extension in the current directory and its subdirectories, except those in the `prod` subdirectory.
+In large projects, it is common to save files that have different purposes in distinct directories. For example, you might save IaC files for your development, staging, and production environments in different directories. When scanning such Projects, you might want to exclude some of these directories. This command scans every file with a `.tf` extension in the current directory and its subdirectories, except those in the `prod` subdirectory.
```
find . -name '*.tf' -not -path './prod/*' | xargs snyk iac test
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-ignores-using-the-.snyk-policy-file.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-ignores-using-the-.snyk-policy-file.md
index cf58821faca2..cf15d1ead1c0 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-ignores-using-the-.snyk-policy-file.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/iac-ignores-using-the-.snyk-policy-file.md
@@ -1,12 +1,12 @@
# IaC ignores using the .snyk policy file
-When you scan IaC configuration files using the Snyk CLI `iac test` command, you can ignore issues that are not relevant to you by using the [`.snyk` policy file](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies/the-.snyk-file). Snyk recommends that you store and version the `.snyk` file in the root of the working directory where you store your IaC configuration files. This file can be created with the `snyk ignore` command. For details see [Ignore vulnerabilities using Snyk CLI](../ignore-vulnerabilities-using-the-snyk-cli.md).
+When you scan IaC configuration files using the Snyk CLI `iac test` command, you can ignore issues that are not relevant to you by using the [`.snyk` policy file](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies/the-.snyk-file). Snyk recommends that you store and version the `.snyk` file in the root of the working directory where you store your IaC configuration files. You can create this file with the `snyk ignore` command. For details see [Ignore vulnerabilities using Snyk CLI](../ignore-vulnerabilities-using-the-snyk-cli.md).
## Ignore paths
For tests run using the Snyk CLI, only issues defined in the `.snyk` file are ignored.
-For tests run from imported Git repositories, issues can be ignored in the Snyk UI. Note that these ignores apply only to scans done using the Snyk UI.
+For tests run from imported Git repositories, you can ignore issues in the Snyk Web UI. Note that these ignores apply only to scans done using the Snyk Web UI.
{% hint style="warning" %}
Ignores in the `.snyk` file and ignores created in the Snyk UI are not synchronized.
@@ -73,7 +73,7 @@ For more information about the Snyk CLI ignore command, see [Ignore vulnerabilit
## Ignore instances of a vulnerability
-Individual instances of a vulnerability within a file can be ignored. To do this, take the “resource path” from the output of `snyk iac test`, and add it to the file path.
+You can ignore individual instances of a vulnerability within a file. To do this, take the “resource path” from the output of `snyk iac test`, and add it to the file path.
For example, from the following output snippet (line break added for ease of reading):
@@ -113,6 +113,6 @@ When you run `snyk iac test`, the CLI loads `$PWD/.snyk`. One common pattern is
The CLI accepts an option, `--policy-path=...`, which overrides the location of `.snyk` policy files. The path can either be a directory containing a file named `.snyk` or the path to a file named `.snyk`. The name of the policy file must be `.snyk`.
-Policies are not loaded automatically when the argument to `snyk iac test` is a file rather than a directory. In this case, `--policy-path` must be specified in order to load policies.
+Policies are not loaded automatically when the argument to `snyk iac test` is a file rather than a directory. In this case, you must specify `--policy-path` to load policies.
The CLI accepts the option `--ignore-policy`, which causes any `.snyk` policy files that are found to be ignored.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/share-cli-results-with-the-snyk-web-ui.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/share-cli-results-with-the-snyk-web-ui.md
index 6c6ceafeaf95..ecb25ba3f71e 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/share-cli-results-with-the-snyk-web-ui.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/share-cli-results-with-the-snyk-web-ui.md
@@ -7,9 +7,9 @@ To see these issues displayed in the Snyk Web UI, run the following CLI command:
`snyk iac test myproject --report`
{% hint style="info" %}
-Using [Custom rules](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-iac/current-iac-custom-rules) and the Share Results functionality together is not currently supported.
+Using [Custom rules](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-iac/current-iac-custom-rules) and the Share Results functionality together is not supported.
-Snyk does not share any file contents over the network, only the required metadata for the configuration issues that were just scanned.
+Snyk does not share any file contents over the network, only the required metadata for the configuration issues that were scanned.
{% endhint %}
## `snyk iac test --report` example output
@@ -54,7 +54,7 @@ You can also open the Project itself and see the Project details:
You can ignore issues using the Snyk Web UI or by creating a `.snyk` policy file along with your Project when scanning. For more information, see [Iac Ignores using the .snyk policy file](iac-ignores-using-the-.snyk-policy-file.md).
{% hint style="info" %}
-Issues that are ignored by using the `.snyk` policy file can not be unignored in the Snyk web UI.
+Issues that are ignored by using the `.snyk` policy file cannot be unignored in the Snyk Web UI.
{% endhint %}
## Project tags
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/README.md
index d0fb525a7855..8b3c55e72c21 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/README.md
@@ -135,7 +135,7 @@ You can also set the `org` flag in `snyk config`, so you do not need to use the
snyk config set org=infrastructure
```
-## Example Test Output
+## Example test output
```
Snyk Infrastructure as Code
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/helm-charts.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/helm-charts.md
index 92565d7db851..38ae4f775d9e 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/helm-charts.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/helm-charts.md
@@ -27,4 +27,4 @@ helm template ./helm > output.yaml
snyk iac test output.yaml
```
-The Snyk CLI cannot read from standard input at this time; Snyk is working on this feature.
+The Snyk CLI cannot read from standard input. Snyk is working on this feature.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/serverless-files.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/serverless-files.md
index 98436234f6a2..395c81a74e5a 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/serverless-files.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/serverless-files.md
@@ -6,9 +6,9 @@ Snyk Infrastructure as Code for Serverless framework supports scanning the packa
You can **test for an issue on specified Serverless files** as explained on this page.
-Be sure you have the [Serverless CLI installed](https://www.serverless.com/framework/docs/getting-started).
+Ensure you have the [Serverless CLI installed](https://www.serverless.com/framework/docs/getting-started).
-After installing the Serverless CLI, **navigate** to the directory that contains your Serverless files and **generate** the Serverless artifacts by entering the following:
+After installing the Serverless CLI, navigate to the directory that contains your Serverless files and generate the Serverless artifacts by entering the following:
```
serverless package --package serverless-artifacts
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/terraform-files.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/terraform-files.md
index c46275ab53d9..4193df6755aa 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/terraform-files.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/test-your-iac-files/terraform-files.md
@@ -19,7 +19,7 @@ snyk iac test .
Terraform plan is the step run between writing your configuration files and deploying those changes.
-`$ terraform plan` identifies the changes that need to be made to your target environment in order to match your desired state.
+`$ terraform plan` identifies the changes that need to be made to your target environment to match your desired state.
As part of this planning stage, all variables and Terraform modules that are used in your targeted Terraform deployment are taken into consideration.
@@ -37,7 +37,7 @@ Provide the path to your Terraform plan output which must be stored as a valid J
snyk iac test tf-plan.json
```
-By default, Snyk scans the changes that will be made to your infrastructure, not the full infrastructure.
+By default, Snyk scans the changes made to your infrastructure, not the full infrastructure.
You can change this behavior by using the `--scan=` option.
@@ -53,7 +53,7 @@ terraform show -json tfplan.binary > tf-plan.json
You can name the `tf-plan.json` file according to your needs.
-These files are considered sensitive, and it is not recommended to commit them to source control.
+These files are sensitive, so Snyk recommends that you do not commit them to source control.
## Troubleshooting Terraform scans
@@ -65,6 +65,6 @@ The option `--experimental` is no longer required for testing your Terraform Pro
* **Variables** - Terraform plan output considers the values stored in variables.
* **Terraform modules** - Terraform plan output includes any configuration issues found from Terraform modules that you may be using.
-* **Delta** - By default, scanning the Terraform plan output scans only for configuration issues on the changes that will be made, not the whole deployment. In contrast, the static scan looks at all of the files. Try re-running the scan with the `--scan=planned-values` option.
+* **Delta** - By default, scanning the Terraform plan output scans only for configuration issues on the changes to be made, not the whole deployment. In contrast, the static scan looks at all of the files. Try re-running the scan with the `--scan=planned-values` option.
If you have found a discrepancy that you cannot explain based on this information, submit a [request](https://support.snyk.io) to Support.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/understand-the-iac-cli-test-results/snyk-iac-cli-test-results-v.-1.939.0-and-later.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/understand-the-iac-cli-test-results/snyk-iac-cli-test-results-v.-1.939.0-and-later.md
index 9b60ea32fe9a..cf9aed458be7 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/understand-the-iac-cli-test-results/snyk-iac-cli-test-results-v.-1.939.0-and-later.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-iac/understand-the-iac-cli-test-results/snyk-iac-cli-test-results-v.-1.939.0-and-later.md
@@ -6,7 +6,7 @@ The instructions in this section apply to any file format supported by Snyk Infr
Snyk CLI analyzes your configuration file for issues and provides information and advice on how to resolve the issues discovered.
-For example, when scanning a Terraform file, run the following command:
+For example, when scanning a Terraform file, run the following command:
```
snyk iac test aws_api_gateway_stage_logging.tf
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/integrate-snyk-into-your-workflow-using-the-cli.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/integrate-snyk-into-your-workflow-using-the-cli.md
index 6f6f4e181763..67e0d6401258 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/integrate-snyk-into-your-workflow-using-the-cli.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/integrate-snyk-into-your-workflow-using-the-cli.md
@@ -9,7 +9,7 @@ This page provides an example of integrating Snyk into your GitHub workflow usin
```
git clone https://github.com/snyk/goof.git
```
-2. Create a new branch, add vulnerabilities on this branch, then merge changes back to GitHub as a Pull Request:
+2. Create a new branch, add vulnerabilities on this branch, then merge changes back to GitHub as a pull request:
```
git branch add_vulns
@@ -89,4 +89,4 @@ Snyk can auto-scan your pull request (PR) for vulnerabilities and license issues
As the PR workflow is completed, Snyk validates the vulnerability and license policy set for the Project. Based on the policy, the checks either passed or failed; this is shown in GitHub.
-This allows you to establish a security gate and prevent pull requests from adding new vulnerabilities, or new open-source libraries that do not meet your license policy, to the source code baseline.
+This lets you establish a security gate and prevent pull requests from adding new vulnerabilities, or new open-source libraries that do not meet your license policy, to the source code baseline.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/open-source-projects-that-must-be-built-before-testing-with-the-snyk-cli.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/open-source-projects-that-must-be-built-before-testing-with-the-snyk-cli.md
index 3753d96b79c9..ea1a189ae350 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/open-source-projects-that-must-be-built-before-testing-with-the-snyk-cli.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/open-source-projects-that-must-be-built-before-testing-with-the-snyk-cli.md
@@ -10,7 +10,7 @@ The following types of Projects must be built before testing with the CLI.
| ------------------- | --------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| JavaScript | npm |
Build required only if no package-lock.json file is present; run npm install to generate. See the Snyk for JavaScript documentation for supported lockfile versions
|
| JavaScript | pnpm | Build required only if no `pnpm-lock.yaml` file is present; run `pnpm install` to generate |
-| Javascript | Yarn | Build required only if no `yarn.lock` file is present; run `yarn install` to generate |
+| JavaScript | Yarn | Build required only if no `yarn.lock` file is present; run `yarn install` to generate |
| Java | Maven |
Yes Run mvn install before testing.
|
| Java | Gradle | No |
| .NET | NuGet | Build required only if no `packages.config` file is present. |
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/review-the-snyk-open-source-cli-results.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/review-the-snyk-open-source-cli-results.md
index 9faef923d102..e0fb9389bff9 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/review-the-snyk-open-source-cli-results.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/review-the-snyk-open-source-cli-results.md
@@ -32,7 +32,7 @@ These are issues that can be fixed by upgrading a direct dependencies version. T
These are issues that cannot be resolved by upgrading a direct dependency. They contain the same information as the issues to fix by upgrading, with versions in which the vulnerability could be fixed if the dependency were upgradeable.
-### License Issues
+### License issues
License issues are determined by the [license policy](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies/license-policies) of your Snyk Organization. License issues contain the following information:
@@ -49,7 +49,7 @@ The descriptive information about the test results includes the following detail
* **Package manager**: The package manager associated with this Open Source scan
* **Target File**: The target file which was scanned for Open Source vulnerabilities
* **Project Name**: The name of the directory in which this Project is located
-* **Open Source**: Information about whether or not this scan was performed on an Open Source Project.
+* **Open Source**: Information about whether this scan was performed on an Open Source Project.
* **Project Path**: The path through which the target file is introduced
* **Local Snyk Policy**: Information about whether this scan was performed on an Open Source Project. For more information, see [The .snyk file](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/prevent/policies/the-.snyk-file).
* **Licenses**: Information about whether this Project was scanned for license issues
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/use-options-to-customize-the-snyk-test-command.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/use-options-to-customize-the-snyk-test-command.md
index 35ab5693d4a0..6aaf0945b988 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/use-options-to-customize-the-snyk-test-command.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-open-source/use-options-to-customize-the-snyk-test-command.md
@@ -1,6 +1,6 @@
# Use options to customize the snyk test command
-The Snyk CLI has many commands that enable you to perform various tasks and many options that enable you to customize the commands. For details, see the [CLI help](../../commands/). This page explains how to customize snyk test to accomplish tasks you may want to do in testing Open Source Projects.
+The Snyk CLI has many commands that you can use to perform various tasks and many options that you can use to customize the commands. For details, see the [CLI help](../../commands/). This page explains how to customize snyk test to accomplish tasks you want to do in testing Open Source Projects.
## Scan multiple manifest files
@@ -20,6 +20,6 @@ If your manifest files are from a supported language but have a custom name, you
## **Test dev dependencies**
-Many package managers allow for separately calling out dependencies that are to be used only in a development or test context, that is, not eventually shipped to production. By default, Snyk does not scan these dependencies. If you want your `dev` dependencies to be included in the scan, use the `--dev` option:
+Many package managers let you separately call out dependencies that are to be used only in a development or test context, that is, not eventually shipped to production. By default, Snyk does not scan these dependencies. If you want your `dev` dependencies to be included in the scan, use the `--dev` option:
`$ snyk test --dev`
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/README.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/README.md
index 1ab4ab6e584b..90612768ebd6 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/README.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/README.md
@@ -1,6 +1,6 @@
# Snyk CLI for Snyk Code
-The [Snyk Command Line Interface](../../) (CLI) enables you to bring the functionality of Snyk Code into your development workflow. Using the Snyk CLI, you can run Snyk Code tests locally or incorporate them into your CI/CD pipeline to scan your source code for security vulnerabilities.
+The [Snyk Command Line Interface](../../) (CLI) lets you bring the functionality of Snyk Code into your development workflow. Using the Snyk CLI, you can run Snyk Code tests locally or incorporate them into your CI/CD pipeline to scan your source code for security vulnerabilities.
## Prerequisites for using the Snyk CLI with Snyk Code
@@ -8,7 +8,7 @@ Before using the Snyk CLI for testing your source code with Snyk Code, verify yo
* A Snyk account.
* Repositories with code in [supported languages and frameworks](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/supported-languages/supported-languages-package-managers-and-frameworks).
-* The **Snyk Code** option [enabled in your Snyk Org settings](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-code/configure-snyk-code).
+* The **Snyk Code** option [enabled in your Snyk Organization settings](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-code/configure-snyk-code).
* The Snyk CLI installed and authenticated.
* For instructions, see [Install or update the Snyk CLI](../../install-the-snyk-cli/) and [Authenticate the Snyk CLI](../../authenticate-to-use-the-cli.md).
* The minimum Snyk CLI version for Snyk Code, version 1.716.0. Snyk recommends using the latest version of the CLI.
@@ -18,7 +18,7 @@ Before using the Snyk CLI for testing your source code with Snyk Code, verify yo
To test your repository code using the Snyk CLI, use the [`snyk code test`](../../commands/code-test.md) command.\
For more information, see [Scan source code with Snyk Code using the CLI](scan-source-code-with-snyk-code-using-the-cli.md).
-Before running Snyk Code tests with the CLI, you may want to do the following:
+Before running Snyk Code tests with the CLI, you can do the following:
* [Update your Snyk CLI version](../../install-the-snyk-cli/).
* [Set the Organization for the CLI tests](set-the-snyk-organization-for-the-cli-tests.md).
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/exclude-directories-and-files-from-snyk-code-cli-tests.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/exclude-directories-and-files-from-snyk-code-cli-tests.md
index 1f33eb02746e..0a9258d16570 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/exclude-directories-and-files-from-snyk-code-cli-tests.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/exclude-directories-and-files-from-snyk-code-cli-tests.md
@@ -34,7 +34,7 @@ The `.snyk` file is created as a hidden file. If you do not see it in your root
snyk ignore --file-path= && snyk ignore --file-path= && snyk ignore --file-path=
```
-From now on, when you run the `snyk code test` command from the selected folder, the specified directories or files will be excluded from the test.
+From now on, when you run the `snyk code test` command from the selected folder, Snyk excludes the specified directories or files from the test.
## Re-include excluded files in the CLI test
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/scan-source-code-with-snyk-code-using-the-cli.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/scan-source-code-with-snyk-code-using-the-cli.md
index 426982d4abd9..80ca90392440 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/scan-source-code-with-snyk-code-using-the-cli.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/scan-source-code-with-snyk-code-using-the-cli.md
@@ -68,15 +68,15 @@ You can publish Snyk Code results to a Snyk Project with or without using an int
You do not need to connect to an SCM integration such as GitHub or GitLab for this to work. It works directly with the results you upload from Snyk CLI.
-* Sync with Snyk Web UI: After creating a Project from the CLI, you can manage it in the Snyk web interface. If you mark an issue as **Ignored** in the UI, future CLI scans for that Project are not being reported again.
+* Sync with Snyk Web UI: After creating a Project from the CLI, you can manage it in the Snyk web interface. If you mark an issue as **Ignored** in the UI, future CLI scans for that Project do not report it again.
* If the Project does not exist, Snyk automatically creates a new CLI Project for you with the value provided in the `--project-name` option.
-* If the Project already exists, Snyk adds your latest scan as a new snapshot to that same Project. This allows you to track its security history over time.
+* If the Project already exists, Snyk adds your latest scan as a new snapshot to that same Project. This lets you track its security history over time.
## Publishing CLI results to a Snyk Code Project
-Using Snyk Code through the CLI allows you to publish test results of local code to a Snyk Project in Snyk Web UI. Future CLI tests of this Project will respect issues that were ignored in the Web UI.
+Using Snyk Code through the CLI lets you publish test results of local code to a Snyk Project in Snyk Web UI. Future CLI tests of this Project respect issues that were ignored in the Web UI.
-This allows using Snyk Code as a blocking CI/CD gate to test and block builds at the main branch level and then have developers review the results in the Web UI, fix any newly introduced vulnerabilities, or ignore irrelevant ones.
+This lets you use Snyk Code as a blocking CI/CD gate to test and block builds at the main branch level and then have developers review the results in the Web UI, fix any newly introduced vulnerabilities, or ignore irrelevant ones.
In the terminal, enter the following command:
@@ -94,7 +94,7 @@ Running the `snyk code test` command with the `--report` option, as shown, retur
If a Snyk Code Project created with the CLI does not yet exist for the provided value in the option, the Snyk CLI creates a new Project. If a Project created using the CLI already exists, a new snapshot is made under the same Project.
-To make the Project easier to interpret in Snyk Web UI, you can use additional commands to specify a target name and also target references, such as Git branches. The following command will create or upload an existing Project named `` under a target named ``.
+To make the Project easier to interpret in Snyk Web UI, you can use additional commands to specify a target name and also target references, such as Git branches. The following command creates or uploads an existing Project named `` under a target named ``.
```
snyk code test --report --project-name="" --target-name=""
@@ -120,9 +120,9 @@ Snyk uses the `--project-name` or `--target-name` you provided in the command to
You do not need to connect to an SCM integration such as GitHub or GitLab for this to work. It works directly with the results you upload from Snyk CLI.
-* Sync with Snyk Web UI: After creating a Project from the CLI, you can manage it in the Snyk web interface. If you mark an issue as **Ignored** in the UI, it will be suppressed in all future Project scans.
+* Sync with Snyk Web UI: After creating a Project from the CLI, you can manage it in the Snyk web interface. If you mark an issue as **Ignored** in the UI, Snyk suppresses it in all future Project scans.
* If the Project is new, Snyk automatically creates a new CLI Project for you with the value provided in the `--project-name` option.
-* If the Project already exists, Snyk adds your latest scan as a new snapshot to that same Project. This allows you to track its security history over time.
+* If the Project already exists, Snyk adds your latest scan as a new snapshot to that same Project. This lets you track its security history over time.
### Troubleshooting published Snyk Code CLI results
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/set-the-snyk-organization-for-the-cli-tests.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/set-the-snyk-organization-for-the-cli-tests.md
index 9d4a628b6251..9e6f4cdfc414 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/set-the-snyk-organization-for-the-cli-tests.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/set-the-snyk-organization-for-the-cli-tests.md
@@ -1,6 +1,6 @@
# Set the Snyk Organization for CLI tests
-If you have several Organizations in your Snyk account, before you test your code using the CLI, specify which Snyk Organization will be used for the test count.
+If you have several Organizations in your Snyk account, before you test your code using the CLI, specify which Snyk Organization to use for the test count.
You can find your available CLI test count on the Organization **Settings** page > **Plan and billing** > **Usage** tab > **Test Usage** section > **Snyk Code** field:
@@ -19,7 +19,7 @@ When setting an Organization for the CLI tests, you have two options:
## Find Snyk ID and internal name of an Organization
-When setting an Organization for the CLI tests, you can use either the Organization ID or the Organization internal name. These Organization identification details are generated automatically by Snyk for each Organization when it is created. The value you select to enter in the command will be shown as the **Organization** name in the test results. You can find the Snyk ID and internal name on the **Settings** page of the Organization on the Web UI.
+When setting an Organization for the CLI tests, you can use either the Organization ID or the Organization internal name. These Organization identification details are generated automatically by Snyk for each Organization when it is created. The value you select to enter in the command appears as the **Organization** name in the test results. You can find the Snyk ID and internal name on the **Settings** page of the Organization on the Web UI.
Follow these steps to find an Organization ID and internal name:
@@ -27,7 +27,7 @@ Follow these steps to find an Organization ID and internal name:
Open an Organization to find its details
-2. Once the selected Organization is open, click the **Org Settings**.
+2. After the selected Organization is open, click **Org Settings**.
3. On the **Settings** page of the Organization, select the **General** tab to find the following:
* **Internal name**: stated in the **Organization name** section.
@@ -40,7 +40,7 @@ Follow these steps to find an Organization ID and internal name:
## Set the default Organization globally for CLI tests
-You can set a default Organization globally for all CLI tests via the CLI. This default Organization will override the Organization set as the [preferred Organization](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-hierarchy/organizations/create-and-delete-organizations). When entering this command, you can use either the [ID or internal name](set-the-snyk-organization-for-the-cli-tests.md#find-snyk-id-and-internal-name-of-an-organization) of the new default Organization.
+You can set a default Organization globally for all CLI tests using the CLI. This default Organization overrides the Organization set as the [preferred Organization](https://app.gitbook.com/s/IgtgtomLQ2TUgSKOMSAm/snyk-hierarchy/organizations/create-and-delete-organizations). When entering this command, you can use either the [ID or internal name](set-the-snyk-organization-for-the-cli-tests.md#find-snyk-id-and-internal-name-of-an-organization) of the new default Organization.
Regardless of the Organization you set as a global default, you can [run specific CLI tests under a different Organization](set-the-snyk-organization-for-the-cli-tests.md#set-an-organization-locally-for-a-specific-cli-test).
@@ -56,7 +56,7 @@ You receive the following confirmation:
org updated
```
-From now on, all your CLI tests will run under the specified Organization.
+From now on, all your CLI tests run under the specified Organization.
For example, to set the Snyk Demo Org as the default Organization for the CLI tests, use the Organization ID and enter:
@@ -66,13 +66,13 @@ snyk config set org=a7708807-3881-xxxx-xxxx-xxxxxxxxxxxx
Command to set Organization and confirmation
-From now on, all the CLI tests will run by default under the Snyk Demo Org Organization, and the Snyk Demo Org ID will appear in the test results:
+From now on, all the CLI tests run by default under the Snyk Demo Org Organization, and the Snyk Demo Org ID appears in the test results:
Snyk Demo Org ID in test results
## Set an Organization locally for a specific CLI test
-You can run a specific CLI test under a different Organization from the default. When using this option, the specified Organization will override the default Organization in a specific CLI test. You can use either the [ID or internal name of the Organization](set-the-snyk-organization-for-the-cli-tests.md#find-snyk-id-and-internal-name-of-an-organization) to run a command.
+You can run a specific CLI test under a different Organization from the default. When using this option, the specified Organization overrides the default Organization in a specific CLI test. You can use either the [ID or internal name of the Organization](set-the-snyk-organization-for-the-cli-tests.md#find-snyk-id-and-internal-name-of-an-organization) to run a command.
To set an Organization for a specific CLI test in the terminal, after the `test` command enter:
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/view-snyk-code-cli-results.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/view-snyk-code-cli-results.md
index d0b3ea0eb734..cb03f6e9fab7 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/view-snyk-code-cli-results.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-code/view-snyk-code-cli-results.md
@@ -1,6 +1,6 @@
# View Snyk Code CLI results
-The Snyk CLI enables you to perform the following actions on the results of the `snyk code test` command:
+The Snyk CLI lets you perform the following actions on the results of the `snyk code test` command:
* [Analyze Snyk Code CLI results](view-snyk-code-cli-results.md#analyze-snyk-code-cli-results): View test results and analyze vulnerabilities.
* [Filter results by severity level](view-snyk-code-cli-results.md#filter-results-by-severity-level): Filter the `snyk code test` results shown in the terminal to display only issues with a specific severity level and higher.
@@ -19,7 +19,7 @@ After you run the `snyk code test` command in the CLI, the results of the test a
Snyk Code test restuls from the CLI
-Note that if you ignored issues on the Snyk Web UI, these issues would still appear in the CLI results. Each section on this page explains one section of the displayed results.
+Note that if you ignored issues on the Snyk Web UI, these issues still appear in the CLI results. Each section on this page explains one section of the displayed results.
### List of vulnerability issues detected by Snyk Code
@@ -44,7 +44,7 @@ The general information about the test results includes the following details:
Detals in general information about the CLI test results
* Test success: Whether the test was completed or not.
-* Organization: The Snyk ID or internal name of the Organization under which the test run. For more information, see [Set the Snyk Organization for the CLI tests](set-the-snyk-organization-for-the-cli-tests.md).
+* Organization: The Snyk ID or internal name of the Organization under which the test ran. For more information, see [Set the Snyk Organization for the CLI tests](set-the-snyk-organization-for-the-cli-tests.md).
* Test type: The type of test command that generated the results. For Snyk Code, it is always `Static code analysis`.
* Project path: The path of the tested repository.
@@ -73,7 +73,7 @@ To display only issues above a specific severity level, enter the following:
snyk code test --severity-threshold=
```
-The results will include only issues with the specified severity level and issues with a higher severity level.
+The results include only issues with the specified severity level and issues with a higher severity level.
For example, in the `snyk-goof-master` folder, eight issues were found, four with a High severity level and four with Medium:
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/scan-and-monitor-images.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/scan-and-monitor-images.md
index 927363cf6e1d..cfa00c865d6b 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/scan-and-monitor-images.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/scan-and-monitor-images.md
@@ -29,13 +29,13 @@ If you use a Dockerfile to build your image, you can specify this when running `
snyk container test : --file=Dockerfile
```
-Specifying a Dockerfile provides more context and allows Snyk to provide clear recommendations on how to fix discovered vulnerabilities.
+Specifying a Dockerfile provides more context and lets Snyk provide clear recommendations on how to fix discovered vulnerabilities.
-Snyk currently detects application vulnerabilities in your image by default.
+Snyk detects application vulnerabilities in your image by default.
## Monitor an image
-Snyk Container also allows you to monitor images. This provides the following advantages:
+Snyk Container also lets you monitor images. This provides the following advantages:
* Snyk alerts you if new vulnerabilities that affect your image are disclosed without having to retest your image locally.
* Snyk interactively filters the results and explores the list of vulnerabilities in your web browser.
diff --git a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/understand-snyk-container-cli-results.md b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/understand-snyk-container-cli-results.md
index fb3a1793d97a..2ae6c750aedd 100644
--- a/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/understand-snyk-container-cli-results.md
+++ b/developer-tools/snyk-cli/scan-and-maintain-projects-using-the-cli/snyk-cli-for-snyk-container/understand-snyk-container-cli-results.md
@@ -33,7 +33,7 @@ Snyk groups together vulnerabilities that are found in multiple packages. This h
Snyk SCM scanning supports a subset of Docker Hub images. Other registries are not supported.
-If Snyk identifies the base image, and the image uses an [Official Docker image](https://docs.docker.com/docker-hub/official_images/), the output includes recommendations for upgrades, in order to fix some of the discovered vulnerabilities.
+If Snyk identifies the base image, and the image uses an [Official Docker image](https://docs.docker.com/docker-hub/official_images/), the output includes recommendations for upgrades, to fix some of the discovered vulnerabilities.
Example of recommendations to upgrade the base image
diff --git a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/README.md b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/README.md
index 18d8cc826d88..279d67d7be21 100644
--- a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/README.md
+++ b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/README.md
@@ -1,8 +1,8 @@
# Security concept of operations for Snyk
-A security concept of operations can be defined as providing a security-focused description of an information system. For details, see the definition in the [NIST computer security glossary](https://csrc.nist.gov/glossary/term/security_concept_of_operations).
+A security concept of operations provides a security-focused description of an information system. For details, see the definition in the [NIST computer security glossary](https://csrc.nist.gov/glossary/term/security_concept_of_operations).
-These pages provide a description of the [Snyk CLI](../getting-started-with-the-snyk-cli.md) and [IDE integrations](../../snyk-ide-plugins-and-extensions/) focused on security. The following information is included:
+These pages provide a security-focused description of the [Snyk CLI](../getting-started-with-the-snyk-cli.md) and [IDE integrations](../../snyk-ide-plugins-and-extensions/). The following pages are included:
* [Access requirements](access-requirements.md)
* [Securing data at rest](securing-data-at-rest.md)
diff --git a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/access-requirements.md b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/access-requirements.md
index 06d531437f24..d0346c4003f7 100644
--- a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/access-requirements.md
+++ b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/access-requirements.md
@@ -4,7 +4,7 @@ When you are using Snyk applications like the [CLI ](../getting-started-with-the
## Local filesystem
-The required filesystem access may vary by product.
+The required filesystem access varies by product.
* CACHE\_PATH (Read,Write,Execute)
* Windows: `C:\\Users\\\\AppData\\Local\\snyk`
@@ -23,7 +23,7 @@ The required filesystem access may vary by product.
* app.\.io:443
* 127.0.0.1:\
* required for Inter Process Communication
- * [Ephemeral Port Range](https://www.rfc-editor.org/rfc/rfc6335.html#section-6) might vary by Operating System and Settings
+ * the [Ephemeral Port Range](https://www.rfc-editor.org/rfc/rfc6335.html#section-6) can vary by operating system and settings
### Optional
diff --git a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/securing-data-at-rest.md b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/securing-data-at-rest.md
index 8439315b807b..efb373e71003 100644
--- a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/securing-data-at-rest.md
+++ b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/securing-data-at-rest.md
@@ -1,8 +1,8 @@
# Securing data at rest
-The Snyk CLI stores its configuration in a JSON file in the local file system in a user-related path. Because the configuration file might include secrets like tokens, it is recommended that you secure the stored file.
+The Snyk CLI stores its configuration in a JSON file in the local file system in a user-related path. Because the configuration file might include secrets like tokens, Snyk recommends that you secure the stored file.
-The following practices are recommended:
+Snyk recommends the following practices:
-* Use ACLs to limit access to the [file path of the configuration file](access-requirements.md). This might be provided by the operating system.
+* Use ACLs to limit access to the [file path of the configuration file](access-requirements.md). The operating system might provide this.
* Use Hard Disk Encryption to secure persisted data (data at rest).
diff --git a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/using-fips-validated-cryptography.md b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/using-fips-validated-cryptography.md
index 3e3ee419b65d..11581a4be639 100644
--- a/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/using-fips-validated-cryptography.md
+++ b/developer-tools/snyk-cli/security-concept-of-operations-for-snyk/using-fips-validated-cryptography.md
@@ -13,7 +13,7 @@ Support for use of FIPS-validated cryptography is limited to the Windows and Lin
## FIPS-validated cryptography support and use in the Snyk CLI and Snyk Language Server
-To optimize the developer experience, Snyk is combining the [Snyk Language Server](../../snyk-ide-plugins-and-extensions/snyk-language-server/) and the [Snyk CLI](../getting-started-with-the-snyk-cli.md). As a first step, Snyk is bringing FIPS binaries under one application. Later also non-FIPS CLI binaries will be used for Snyk Language Server.
+To optimize the developer experience, Snyk is combining the [Snyk Language Server](../../snyk-ide-plugins-and-extensions/snyk-language-server/) and the [Snyk CLI](../getting-started-with-the-snyk-cli.md). As a first step, Snyk is bringing FIPS binaries under one application. Later, Snyk Language Server also uses non-FIPS CLI binaries.
The Snyk Language Server can now be executed as a CLI command.
@@ -40,7 +40,7 @@ On Windows, Snyk supports FIPS-validated cryptography through the Windows CNG AP
To enable FIPS on Windows, [use the Windows FIPS policy](https://docs.microsoft.com/en-us/windows/security/threat-protection/fips-140-validation#step-3-enable-the-fips-security-policy).
-For testing, FIPS can be enabled using the following registry key `HKLM\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy` by setting the value of `Enabled` to 1.
+For testing, enable FIPS using the registry key `HKLM\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy` by setting the value of `Enabled` to 1.
#### Download FIPS-enabled binaries
@@ -71,13 +71,13 @@ docker run -it mcr.microsoft.com/cbl-mariner/base/core:2.0 bash
### Troubleshooting FIPS-cryptography in the Snyk CLI
-`not in FIPS mode` errors indicate that the underlying cryptography library is not in FIPS mode. To solve these issues ensure that the [prerequisites](using-fips-validated-cryptography.md#prerequisites-for-fips-cryptography-in-the-cli-and-snyk-language-server) are met.
+`not in FIPS mode` errors indicate that the underlying cryptography library is not in FIPS mode. To solve these issues, ensure that the [prerequisites](using-fips-validated-cryptography.md#prerequisites-for-fips-cryptography-in-the-cli-and-snyk-language-server) are met.
## FIPS-validated cryptography support and use in IDE Integrations
### Visual Studio Code
-To make use of FIPS-validated cryptography in the [Snyk Visual Studio Code integration](../../snyk-ide-plugins-and-extensions/visual-studio-code-extension/), do the following:
+To use FIPS-validated cryptography in the [Snyk Visual Studio Code integration](../../snyk-ide-plugins-and-extensions/visual-studio-code-extension/), do the following:
* Ensure the [prerequisites](using-fips-validated-cryptography.md#prerequisites-for-fips-cryptography-in-the-cli-and-snyk-language-server) are met.
* [Download the appropriate FIPS-enabled binaries](using-fips-validated-cryptography.md#download-fips-enabled-binaries).
@@ -86,7 +86,7 @@ To make use of FIPS-validated cryptography in the [Snyk Visual Studio Code integ
### Eclipse
-To make use of FIPS-validated cryptography in the [Snyk Eclipse integration](../../snyk-ide-plugins-and-extensions/eclipse-plugin/), do the following:
+To use FIPS-validated cryptography in the [Snyk Eclipse integration](../../snyk-ide-plugins-and-extensions/eclipse-plugin/), do the following:
* Ensure the [prerequisites](using-fips-validated-cryptography.md#prerequisites-for-fips-cryptography-in-the-cli-and-snyk-language-server) are met
* [Download the appropriate FIPS-enabled binaries.](using-fips-validated-cryptography.md#download-fips-enabled-binaries)
@@ -96,7 +96,7 @@ To make use of FIPS-validated cryptography in the [Snyk Eclipse integration](../
### JetBrains
-To make use of FIPS-validated cryptography in the [Snyk JetBrains integration](../../snyk-ide-plugins-and-extensions/jetbrains-plugin/), do the following:
+To use FIPS-validated cryptography in the [Snyk JetBrains integration](../../snyk-ide-plugins-and-extensions/jetbrains-plugin/), do the following:
* Ensure the [prerequisites](using-fips-validated-cryptography.md#prerequisites-for-fips-cryptography-in-the-cli-and-snyk-language-server) are met.
* [Download the appropriate FIPS-enabled binaries](using-fips-validated-cryptography.md#download-fips-enabled-binaries).
@@ -106,7 +106,7 @@ To make use of FIPS-validated cryptography in the [Snyk JetBrains integration](.
### Visual Studio
-To make use of FIPS-validated cryptography in the [Snyk Visual Studio integration](../../snyk-ide-plugins-and-extensions/visual-studio-extension/) do the following:
+To use FIPS-validated cryptography in the [Snyk Visual Studio integration](../../snyk-ide-plugins-and-extensions/visual-studio-extension/) do the following:
* Ensure the [prerequisites](using-fips-validated-cryptography.md#prerequisites-for-fips-cryptography-in-the-cli-and-snyk-language-server) are met.
* [Download the appropriate FIPS-enabled binaries](using-fips-validated-cryptography.md#download-fips-enabled-binaries).
@@ -119,4 +119,4 @@ FIPS in [CI/CD Integrations](../../snyk-ci-cd-integrations/) is available only b
## FIPS-validated cryptography support and use in Package Repositories
-The [Artifactory Gatekeeper plugin](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-open-source/manage-vulnerabilities/artifactory-gatekeeper-plugin) uses the Snyk API and runs on a Java VM. To make use of FIPS-validated cryptography, configure the Java Runtime to use a FIPS-validated[ JCE (Java Cryptography Extension)](https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search?SearchMode=Basic\&ModuleName=java\&CertificateStatus=Active\&ValidationYear=0).
+The [Artifactory Gatekeeper plugin](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/scan-with-snyk/snyk-open-source/manage-vulnerabilities/artifactory-gatekeeper-plugin) uses the Snyk API and runs on a Java VM. To use FIPS-validated cryptography, configure the Java Runtime to use a FIPS-validated[ JCE (Java Cryptography Extension)](https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search?SearchMode=Basic\&ModuleName=java\&CertificateStatus=Active\&ValidationYear=0).
diff --git a/developer-tools/snyk-cli/snyk-cli-analytics.md b/developer-tools/snyk-cli/snyk-cli-analytics.md
index c22b053e8463..a24d5798c1d4 100644
--- a/developer-tools/snyk-cli/snyk-cli-analytics.md
+++ b/developer-tools/snyk-cli/snyk-cli-analytics.md
@@ -1,6 +1,6 @@
# Snyk CLI analytics
-To provide a reliable and feature-rich experience, our command-line interface (CLI) utilizes two types of analytics: [Essential Operational Analytics](snyk-cli-analytics.md#essential-operational-analytics) and [Optional Usage Analytics](snyk-cli-analytics.md#optional-usage-analytics). We believe in transparency, and this document explains what data is collected, why it's necessary, and the controls you have.
+To provide a reliable and feature-rich experience, our command-line interface (CLI) uses two types of analytics: [Essential Operational Analytics](snyk-cli-analytics.md#essential-operational-analytics) and [Optional Usage Analytics](snyk-cli-analytics.md#optional-usage-analytics). We believe in transparency, and this document explains what data is collected, why it's necessary, and the controls you have.
## Essential Operational Analytics
diff --git a/developer-tools/snyk-cli/snyk-cli/upgrade-the-snyk-cli.md b/developer-tools/snyk-cli/snyk-cli/upgrade-the-snyk-cli.md
index 3aede9957edb..359b3f8df61d 100644
--- a/developer-tools/snyk-cli/snyk-cli/upgrade-the-snyk-cli.md
+++ b/developer-tools/snyk-cli/snyk-cli/upgrade-the-snyk-cli.md
@@ -126,7 +126,7 @@ The Snyk Setup action installs the CLI directly from a binary. By default, this
```
{% endcode %}
-Unlike Docker-based actions, the Snyk Setup action allows you to pin a specific CLI version to prevent automatic updates. Use the `version` input to specify the version:
+Unlike Docker-based actions, the Snyk Setup action lets you pin a specific CLI version to prevent automatic updates. Use the `version` input to specify the version:
{% code overflow="wrap" expandable="true" %}
```yaml
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/README.md b/developer-tools/snyk-ide-plugins-and-extensions/README.md
index 9fdcc375fe7e..d5c0e94647d6 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/README.md
@@ -1,13 +1,13 @@
# Snyk IDE plugins and extensions
{% hint style="info" %}
-If Snyk is hosting your data in a region other than `SNYK US-01`, you may set the custom endpoint in the IDE. For more information, see [IDEs URLS](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls) on the [Regional hosting and data residency](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency) page.\
-Multi-tenant users who do not belong to the `SNYK-US-01` region will be automatically redirected to the correct domain for the email with which the user authenticated. The redirect will not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
+If Snyk is hosting your data in a region other than `SNYK US-01`, you can set the custom endpoint in the IDE. For more information, see [IDEs URLS](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls) on the [Regional hosting and data residency](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency) page.\
+Snyk automatically redirects multi-tenant users who do not belong to the `SNYK-US-01` region to the correct domain for the email with which the user authenticated. The redirect does not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
{% endhint %}
Snyk Security plugins and extensions find and fix security vulnerabilities and issues in Snyk Projects. This helps individual developers, open source contributors, and code maintainers to pass security reviews, avoid costly fixes later in development, and reduce time to develop and deliver secure code.
-The results of a vulnerability scan show issues with context, impact, and fix guidance in your IDE, where the fix for the vulnerability can be done right in the IDE itself.
+The results of a vulnerability scan show issues with context, impact, and fix guidance in your IDE, where you can fix the vulnerability directly.
The Snyk IDE plugins and extensions rely on the [Snyk CLI](../snyk-cli/) to perform many functions. For details, refer to the documentation for each IDE. When you are troubleshooting, it is always helpful to run the CLI for the same action with the debug option, `-d`.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/compatibility-matrix.md b/developer-tools/snyk-ide-plugins-and-extensions/compatibility-matrix.md
index 8dface07a40a..7875c9fe3b2f 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/compatibility-matrix.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/compatibility-matrix.md
@@ -1,4 +1,4 @@
-# IDE Plugin Compatibility Matrix
+# IDE plugin compatibility matrix
This matrix shows the compatible CLI version range for each IDE plugin version released in the past 12 months.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/README.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/README.md
index 14cdec4bba9b..957a3e93d28f 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/README.md
@@ -1,14 +1,14 @@
# Eclipse plugin
-## **Scan early, fix as you develop: elevate your security posture**
+## **Scan early, fix as you develop**
-Integrating security checks early in your development lifecycle helps you pass security reviews seamlessly and avoid expensive fixes down the line.
+Integrating security checks early in your development lifecycle helps you pass security reviews and avoid expensive fixes later.
-The Snyk Eclipse extension allows you to analyze your code, open-source dependencies, and Infrastructure as Code (IaC) configurations. With actionable insights directly in your IDE, you can address issues as they arise.
+The Snyk Eclipse extension lets you analyze your code, open-source dependencies, and Infrastructure as Code (IaC) configurations. With actionable insights directly in your IDE, you can address issues as they arise.
Key features:
-* In-line issue highlighting: Security issues are flagged directly within your code, categorized by type and severity for quick identification and resolution.
+* In-line issue highlighting: Snyk flags security issues directly within your code, categorized by type and severity for quick identification and resolution.
* Comprehensive scanning: The extension scans for a wide range of security issues, including:
* [Open Source Security](https://snyk.io/product/open-source-security-management/): Detects vulnerabilities and license issues in both direct and transitive open-source dependencies. Automated fix suggestions simplify remediation. Explore more in the [Snyk Open Source documentation](https://docs.snyk.io/scan-using-snyk/snyk-open-source).
* [Code Security](https://snyk.io/product/snyk-code/): Identifies security vulnerabilities in your custom code. Explore more in the [Snyk Code documentation](https://docs.snyk.io/scan-using-snyk/snyk-code).
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/authentication-for-the-eclipse-plugin.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/authentication-for-the-eclipse-plugin.md
index 3e6675ad9ae8..56214e3b225b 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/authentication-for-the-eclipse-plugin.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/authentication-for-the-eclipse-plugin.md
@@ -16,7 +16,7 @@ After the plugin is installed, follow these steps to authenticate:
1. In the dialog that opens, set the Snyk API endpoint for a custom multi-tenant or single-tenant setup. For details, see [IDE URLs](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls).\
\
- Multi-tenant users who do not belong to the `SNYK-US-01` region ( `https://api.snyk.io`) will be automatically redirected to the correct domain for the email with which the user authenticated. This redirect will not happen if users are expected to use a custom URL, such as in single-tenant company configurations.\
+ Snyk automatically redirects multi-tenant users who do not belong to the `SNYK-US-01` region ( `https://api.snyk.io`) to the correct domain for the email with which the user authenticated. This redirect does not happen if users are expected to use a custom URL, such as in single-tenant company configurations.\
\
When you are finished with the settings on this page, click **Next**.
@@ -43,7 +43,7 @@ If you have problems, see [OAuth 2.0 authentication does not work](../troublesho
{% include "../../.gitbook/includes/this-method-is-inferior-to-....md" %}
{% hint style="warning" %}
-The Personal Access Token (PAT) authentication is progressively rolled out to all Enterprise customers. To check if this feature is available for your Organization at this time, please reach out to your Snyk account team.
+The Personal Access Token (PAT) authentication is progressively rolled out to all Enterprise customers. To check if this feature is available for your Organization at this time, contact your Snyk account team.
{% endhint %}
To authenticate using the Personal Access Token, follow these steps:
@@ -53,7 +53,7 @@ To authenticate using the Personal Access Token, follow these steps:
2. Set the **Authentication Method** to **Use Personal Access Token**.
-3. Click the **Connect IDE to Snyk** button.
+3. Click **Connect IDE to Snyk**.
4. Create your **Personal Access Token**. For details, see the [Authentication for API](../../snyk-api/authentication-for-api/) page.
5. Add the token in the **Token** field.
6. Click **Apply and Close**.
@@ -71,7 +71,7 @@ To authenticate using the API token, follow these steps:
2. Set the **Authentication Method** to **API token**.
-3. Click the **Connect IDE to Snyk** button.
+3. Click **Connect IDE to Snyk**.
4. Click **Authenticate** in the web browser window that opens.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/configuration-of-the-eclipse-plugin.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/configuration-of-the-eclipse-plugin.md
index f3c4ffadf990..06e39e0cfb83 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/configuration-of-the-eclipse-plugin.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/configuration-of-the-eclipse-plugin.md
@@ -9,10 +9,10 @@ You can set the following global configuration settings in the Snyk preferences.
Snyk preferences
* **Custom Endpoint**: Specify the Snyk API endpoint for a custom multi-tenant or single-tenant setup. If you are using `https://api.snyk.io`, no configuration is required. For details, see the list of [IDEs URLs](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls).\
- Multi-tenant users who do not belong to the `SNYK-US-01` region will be automatically redirected to the correct domain for the email with which the user authenticated. The redirect will not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
+ Snyk automatically redirects multi-tenant users who do not belong to the `SNYK-US-01` region to the correct domain for the email with which the user authenticated. The redirect does not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
* **Allow unknown certificate authorities**: Disable certificate checks for SSL connections.
-* **Authentication Method**: Select to override the default OAuth2 authentication in order to use a Snyk API token. Snyk recommends keeping this setting off because the default OAuth2 authentication is more secure.
-* **Connect to Snyk**: Launch the web-browser to authenticate. In case of Personal Access Tokens, it will redirect to the correct website where the token can be generated and copied from.
+* **Authentication Method**: Select to override the default OAuth2 authentication to use a Snyk API token. Snyk recommends keeping this setting off because the default OAuth2 authentication is more secure.
+* **Connect to Snyk**: Launch the web browser to authenticate. For Personal Access Tokens, it redirects to the correct website where you can generate and copy the token.
* **API Token or Personal Access Token**: Set the authentication token for Snyk.
* **Snyk Open Source enabled**: Enable or disable Snyk Open Source Dependency Scans through the Language Server. Default: `Enabled`.
* **Snyk Code Security enabled**: Enable or disable Snyk Code Security Issues through the Language Server. Default: `Disabled`.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/eclipse-plugin-folder-trust.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/eclipse-plugin-folder-trust.md
index 2c4475d2da97..83778564faa3 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/eclipse-plugin-folder-trust.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/eclipse-plugin-folder-trust.md
@@ -2,13 +2,13 @@
The Snyk plugin asks for folder trust before allowing scans to be run against new folders.
-When scanning for vulnerabilities, Snyk may automatically execute code such as invoking the package manager to get dependency information. You should only scan folders you trust.
+When scanning for vulnerabilities, Snyk might automatically execute code such as invoking the package manager to get dependency information. Scan only folders you trust.
Note that invoking a package manager (pip, Gradle, Maven, Yarn, npm, and so on) on untrusted code that has malicious configurations may expose your system to malicious code execution and exploits.
If in doubt, select **Don't trust folders**.
-After a trust is granted, Snyk will not ask for trust on the opened Project folder and its subfolders again. If you did not grant trust the first time, the plugin asks again the next time you restart your Eclipse instance.
+After you grant trust, Snyk does not ask for trust on the opened Project folder and its subfolders again. If you did not grant trust the first time, the plugin asks again the next time you restart your Eclipse instance.
To revoke an existing folder trust, you can navigate to the Snyk plugin preferences in Eclipse and edit the **Trusted Folders** setting to specify which paths are safe to scan.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/environment-variables-for-the-eclipse-plugin.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/environment-variables-for-the-eclipse-plugin.md
index cf5c7bdb9eca..e5941dd31467 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/environment-variables-for-the-eclipse-plugin.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/environment-variables-for-the-eclipse-plugin.md
@@ -1,17 +1,17 @@
# Environment variables for the Eclipse plugin
-To analyze open-source dependencies and IAC template files, the plugin uses the Snyk CLI. The CLI needs the following environment variables:
+To analyze open-source dependencies and IaC template files, the plugin uses the Snyk CLI. The CLI needs the following environment variables:
* `PATH`: The path to needed binaries, for example, to Maven. You can also adjust the `PATH` variable manually using the `Path` field in the settings dialog.
* `JAVA_HOME`: The path to the JDK you want to use to analyze Java dependencies.
* `http_proxy` and `https_proxy`: Proxy set using the value in the format `http://username:password@proxyhost:proxyport`.\
- Note that the leading `http://` in the value does not change to `https://` for an `https_proxy`. If you populate the proxy settings in Eclipse, the Snyk plugin will set the environment variables automatically for Language Server and CLI.
+ Note that the leading `http://` in the value does not change to `https://` for an `https_proxy`. If you populate the proxy settings in Eclipse, the Snyk plugin sets the environment variables automatically for Language Server and CLI.
Setting these variables only in a shell environment (for example, using `~/.bashrc`) is not enough, if you do not start Eclipse from the command line or create a script file that starts Eclipse using a shell environment.
* On Windows, set the variables using the GUI or on the command line using the [setx](https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/setx) tool.
* On macOS, the process `launchd` needs to know the environment variables to launch Eclipse directly from the Finder. Set these environment variables using the `launchctl setenv` command, for example, on startup or using a script you launch at user login.\
- Note that providing environment variables to the macOS UI may change between operating system releases, so it can be easier to create a small shell script that launches the Eclipse app to leverage the shell environment. This can be defined using `~/.bashrc`.
+ Note that providing environment variables to the macOS UI may change between operating system releases, so it can be easier to create a small shell script that launches the Eclipse app to use the shell environment. This can be defined using `~/.bashrc`.
* On Linux, you can update the file `/etc/environment` to propagate the environment variables to the window manager and UI.
{% hint style="info" %}
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/misconfiguration-scanning-results-snyk-infrastructure-as-code.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/misconfiguration-scanning-results-snyk-infrastructure-as-code.md
index 529bfdc69c18..ff8f45bd3846 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/misconfiguration-scanning-results-snyk-infrastructure-as-code.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/misconfiguration-scanning-results-snyk-infrastructure-as-code.md
@@ -3,7 +3,7 @@
In the Eclipse plugin version 2.0.0 and later, Snyk has enhanced integrations with the native flows of Eclipse: inline code highlights with displays of information about the issue on hover, and Eclipse Problems integrations. The following illustrates all of these for a high-severity security vulnerability found in a `js` file:
* The misconfiguration is highlighted in your code, with the underline color and icon adjacent to the line number indicating the severity of the issue. You can see detailed information and advice on how to resolve the misconfiguration by hovering over the highlighted code. The hover information is limited to the JavaEditor and GenericEditor, the latter being the default editor for plugins like Wild Web Developer.
-* Misconfigurations are displayed in the **Problems** view, which allows for filtering and grouping of issues. The line containing the issue is shown in the **Location** column. You can navigate to the issue in the code by clicking the issue in the list of problems.
+* Misconfigurations are displayed in the **Problems** view, which lets you filter and group issues. The line containing the issue is shown in the **Location** column. You can navigate to the issue in the code by clicking the issue in the list of problems.
Snyk IaC findings displayed in Eclipse
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/sast-scanning-results-sast-snyk-code.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/sast-scanning-results-sast-snyk-code.md
index 01ac43dd45bb..b4a2ac3c6933 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/sast-scanning-results-sast-snyk-code.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/sast-scanning-results-sast-snyk-code.md
@@ -3,7 +3,7 @@
In the Eclipse plugin version 2.0.0 and later, Snyk has enhanced integrations with the native flows of Eclipse: inline code highlights with displays of information about the issue on hover, and Eclipse Problems integrations. The following illustrates all of these for a high-severity security vulnerability found in a `js` file.
* The security vulnerability is highlighted in your code, with the underline color and icon adjacent to the line number indicating the severity of the issue. You can see the vulnerability ID and detailed information by hovering over the highlighted code. The hover information is limited to the JavaEditor and GenericEditor, the latter being the default editor for plugins like Wild Web Developer.
-* Vulnerabilities are displayed in the **Problems** view, which allows for filtering and grouping issues. The line containing the issue is shown in the **Location** column. You can navigate to the issue in the code by clicking the issue in the list of problems.
+* Vulnerabilities are displayed in the **Problems** view, which lets you filter and group issues. The line containing the issue is shown in the **Location** column. You can navigate to the issue in the code by clicking the issue in the list of problems.
Snyk Code findings displayed in Eclipse
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/third-party-dependency-scanning-sca-snyk-open-source.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/third-party-dependency-scanning-sca-snyk-open-source.md
index 7c6e039480bb..31712e5ccd05 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/third-party-dependency-scanning-sca-snyk-open-source.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/third-party-dependency-scanning-sca-snyk-open-source.md
@@ -3,7 +3,7 @@
In the Eclipse plugin version 2.0.0 and later, Snyk has enhanced integrations with the native flows of Eclipse: inline code highlights with displays of information about the issue on hover, and Eclipse Problems integrations. The following shows all of these for a high-severity security vulnerability found in a `js` file:
* The security vulnerability is highlighted in your code, with the underline color and icon adjacent to the line number indicating the severity of the issue. You can see the vulnerability ID and detailed information by hovering over the highlighted code. The hover information is limited to the JavaEditor and GenericEditor, the latter being the default editor for plugins like Wild Web Developer.
-* Vulnerabilities are displayed in the **Problems** view, which allows for filtering and grouping issues. The line containing the issue is shown in the **Location** column. You can navigate to the issue in the code by clicking the issue in the list of problems.
+* Vulnerabilities are displayed in the **Problems** view, which lets you filter and group issues. The line containing the issue is shown in the **Location** column. You can navigate to the issue in the code by clicking the issue in the list of problems.
Snyk Open Source issue displayed in Eclipse
@@ -15,4 +15,4 @@ To ignore an issue for 30 days, right-click the issue in the left panel of the *
You can enable monitoring for a Project to help spot new issues as they are reported. To do this, right-click a folder in the left panel of the **Snyk** view and select **Monitor project**.
-
Details for a Snyk Open Source issue dispilayed in the Snyk view
+
Details for a Snyk Open Source issue displayed in the Snyk view
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/troubleshooting-for-the-eclipse-plugin.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/troubleshooting-for-the-eclipse-plugin.md
index 83662a33ce50..e2aeef010567 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/troubleshooting-for-the-eclipse-plugin.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/troubleshooting-for-the-eclipse-plugin.md
@@ -67,7 +67,7 @@ If you are facing issues installing Eclipse plugins, it might be due to the inco
6. Launch the Eclipse IDE by the usual method.
7. After Eclipse is launched, navigate to **Window** > **Preferences** > **Java** > **Installed JREs**.
8. Click on **Add** and select the **path to JDK 17 or higher version** installed on your system.
-9. Click **OK** and close the Preferences dialogue box.
+9. Click **OK** and close the Preferences dialog box.
You are now ready to install any Eclipse plugin of your choice.
@@ -79,20 +79,20 @@ Ensure you replace `C:\\\\Program Files\\\\Java\\\\jdk-17.0.1\\\\bin` with the a
## Application development and JDK version
-While running Eclipse with JDK 17 or a higher version can resolve issues related to plugin installation, it is important to note that it may not be compatible with all versions of Java used for developing applications. Depending on the specific requirements of your application, you may need to use a different version of Java, such as JDK 8 or 11, for development purposes. Be sure to consult the documentation and requirements for your application before making any changes to your Java environment.
+While running Eclipse with JDK 17 or a higher version can resolve issues related to plugin installation, it might not be compatible with all versions of Java used for developing applications. Depending on the specific requirements of your application, you may need to use a different version of Java, such as JDK 8 or 11, for development purposes. Be sure to consult the documentation and requirements for your application before making any changes to your Java environment.
Note also that while you can install multiple versions of JDK on your system, you can use only one version at a time. If you need to switch between different versions of JDK for different Projects, you must update the Eclipse configuration accordingly.
-To change the JDK version used by Eclipse for a specificProject, follow these steps:
+To change the JDK version used by Eclipse for a specific Project, follow these steps:
1. Open the Project in Eclipse.
2. Right-click on the Project and select **Properties**.
-3. In the Properties dialogue box, navigate to **Java Build Path** > **Libraries**.
+3. In the Properties dialog box, navigate to **Java Build Path** > **Libraries**.
4. Locate the **JRE System Library** and click on it to expand the options.
5. Click on **Edit** and select the desired JDK version from the list of installed JREs.
6. Click **Finish** to save the changes.
-By following these steps, you can easily switch between different JDK versions for different Projects in Eclipse. Ensure that you are using the correct version of JDK for each Project, as this can impact the compatibility and functionality of your application.
+By following these steps, you can switch between different JDK versions for different Projects in Eclipse. Ensure that you are using the correct version of JDK for each Project, as this can impact the compatibility and functionality of your application.
## Windows Defender warns of running a binary
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/use-the-snyk-plugin-to-secure-your-eclipse-projects.md b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/use-the-snyk-plugin-to-secure-your-eclipse-projects.md
index be5cbcb2b71d..c8b7a03edcd3 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/use-the-snyk-plugin-to-secure-your-eclipse-projects.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/eclipse-plugin/use-the-snyk-plugin-to-secure-your-eclipse-projects.md
@@ -1,6 +1,6 @@
# Use the Snyk plugin to secure your Eclipse projects
-After the Eclipse plugin is downloaded and authentication is complete, the plugin starts the workspace scan. You may notice a confirmation that a workspace scan is starting. Alternatively, you can trigger a workspace scan from the context menu of your Project, or from the Snyk View.
+After the Eclipse plugin is downloaded and authentication is complete, the plugin starts the workspace scan. You might notice a confirmation that a workspace scan is starting. Alternatively, you can trigger a workspace scan from the context menu of your Project, or from the Snyk View.
Starting workspace scan
@@ -22,7 +22,7 @@ To hide low-severity issues, navigate to **View** > **Severity** and clear **Low
Severity filters in the View menu
-## Issue View Options
+## Issue view options
[Code Consistent Ignores](https://app.gitbook.com/s/BJO0IZx7zB6bOkotxQP2/fix/prioritize-issues-for-fixing/ignore-issues/consistent-ignores-for-snyk-code) filters issues to help teams focus on critical tasks. After you create an ignore, Snyk applies it to all tests and branches.
@@ -36,7 +36,7 @@ These filters do not apply if you disable **Code Consistent Ignores** for the Or
Starting with version 3.1.0, it is possible to see only newly introduced issues.
-This functionality reduces noise and allows you to focus only on current changes. This helps prevent issues early, thus unblocking your CI/CD pipeline and speeding up your deliveries.
+This functionality reduces noise and lets you focus only on current changes. This helps prevent issues early, so it unblocks your CI/CD pipeline and speeds up your deliveries.
The logic uses your local Git repository or any folder to compare the current findings with those in a base branch or reference folder. Net new issues scanning (delta scanning) shows you the difference between the two branches or folders, highlighting only the new issues.
@@ -46,13 +46,13 @@ To apply the filter and see only the new issues, use the **total**/**new** toggl
Activate Net new issues in the dot menu of the Snyk View
-For newly created feature branches, there will be no reported issues. That is an intended state that developers would aim for, as illustrated in the screen image that follows:
+For newly created feature branches, there are no reported issues. That is an intended state that developers aim for, as illustrated in the screen image that follows:
No new issues introduced in a newly created branch
The base branch is usually automatically determined for each Git repository.
-You may change the base branch or base folder by following these steps, as illustrated in the screen image that follows:
+You can change the base branch or base folder by following these steps, as illustrated in the screen image that follows:
1. Toggle the **total**/**new** filter in the summary panel.
2. Click on the top-level node in the Issues tree to change the branch or directory.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/README.md b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/README.md
index 372ba622baa5..2412d66d8527 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/README.md
@@ -1,14 +1,14 @@
# JetBrains plugin
-## **Scan early, fix as you develop: elevate your security posture**
+## **Scan early, fix as you develop**
-Integrating security checks early in your development lifecycle helps you pass security reviews seamlessly and avoid expensive fixes down the line.
+Integrating security checks early in your development lifecycle helps you pass security reviews and avoid expensive fixes later.
-The Snyk JetBrains plugin allows you to analyze your code, open-source dependencies and Infrastructure as Code (IaC) configurations. With actionable insights directly in your IDE, you can address issues as they arise.
+The Snyk JetBrains plugin lets you analyze your code, open-source dependencies, and Infrastructure as Code (IaC) configurations. With actionable insights directly in your IDE, you can address issues as they arise.
Key features:
-* In-line issue highlighting: Security issues are flagged directly within your code, categorized by type and severity for quick identification and resolution.
+* In-line issue highlighting: Snyk flags security issues directly within your code, categorized by type and severity for quick identification and resolution.
* Comprehensive scanning: The extension scans for a wide range of security issues, including:
* [Open Source Security](https://snyk.io/product/open-source-security-management/): Detects vulnerabilities and license issues in both direct and transitive open-source dependencies. Automated fix suggestions simplify remediation. Explore more in the [Snyk Open Source documentation](https://docs.snyk.io/scan-using-snyk/snyk-open-source).
* [Code Security](https://snyk.io/product/snyk-code/): Identifies security vulnerabilities in your custom code. Explore more in the [Snyk Code documentation](https://docs.snyk.io/scan-using-snyk/snyk-code).
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/authentication-for-the-jetbrains-plugins.md b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/authentication-for-the-jetbrains-plugins.md
index 972b8d6704c4..9b81ab0ab2f2 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/authentication-for-the-jetbrains-plugins.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/authentication-for-the-jetbrains-plugins.md
@@ -39,7 +39,7 @@ If you have problems, see [OAuth 2.0 authentication does not work](../troublesho
{% include "../../.gitbook/includes/this-method-is-inferior-to-....md" %}
{% hint style="warning" %}
-The Personal Access Token (PAT) authentication is progressively rolled out to all Enterprise customers. To check if this feature is available for your Organization at this time, please reach out to your Snyk account team.
+The Personal Access Token (PAT) authentication is progressively rolled out to all Enterprise customers. To check if this feature is available for your Organization at this time, contact your Snyk account team.
{% endhint %}
To authenticate using the Personal Access token, follow these steps:
@@ -48,7 +48,7 @@ To authenticate using the Personal Access token, follow these steps:
2. Set the **Authentication Method** to **Use Personal Access Token**.
-3. Click the **Connect IDE to Snyk** button.
+3. Click **Connect IDE to Snyk**.
4. Create your **Personal Access Token**. For details, see the [Authentication for API](../../snyk-api/authentication-for-api/) page.
5. Add the token in the **Token** field.
6. Click **Apply and Close**.
@@ -63,7 +63,7 @@ To authenticate, follow these steps:
2. Set the **Authentication Method** to **API token**.
-3. Click the **Connect IDE to Snyk** button.
+3. Click **Connect IDE to Snyk**.
4. Click **Authenticate** in the web browser window that opens.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md
index 9f2c6103b488..44e9d963054e 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md
@@ -1,7 +1,7 @@
# Configuration for the Snyk JetBrains plugin and IDE proxy
{% hint style="info" %}
-Snyk is moving to a [new unified configuration dialog](../unified-ide-configuration-dialog-experimental.md) which is currently available via opt-in.
+Snyk is moving to a [new unified configuration dialog](../unified-ide-configuration-dialog-experimental.md), which is available through opt-in.
{% endhint %}
Navigate to **Preferences** > **Tools** > **Snyk** to set the following configurations for the plugin:
@@ -12,7 +12,7 @@ Navigate to **Preferences** > **Tools** > **Snyk** to set the following configur
* **Authentication method**: Specify whether to authenticate with OAuth2 or with an API token. `OAuth2` is the default
* **Token**: Set the token to use for authentication with Snyk. For details, see [Authentication for the JetBrains plugins](authentication-for-the-jetbrains-plugins.md).
-* **Custom endpoint**: Specify the Snyk API endpoint for a custom multi-tenant or single-tenant setup. If you are using `https://api.snyk.io`, no configuration is required. For details, see the list of [IDE URLs](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls).\
+* **Custom endpoint**: Specify the Snyk API endpoint for a custom multi-tenant or single-tenant setup. If you are using `https://api.snyk.io`, no configuration is needed. For details, see the list of [IDE URLs](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls).\
Multi-tenant users who do not belong to the `SNYK-US-01` region are automatically redirected to the domain for the email with which the user authenticated. The redirect does not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
* **Ignore unknown CA**: Ignore the SSL cert, if needed.
* **Organization**: Set the Organization to run `snyk test` against (similar to the `--org=` option in the CLI). Snyk recommends using the `ORG_ID`. If you specify an Organization slug name, the value must match the URL slug as displayed in the URL of your Organization in the Snyk Web UI: `https://app.snyk.io/org/[orgslugname]`.\
@@ -39,7 +39,7 @@ Navigate to **Preferences** > **Tools** > **Snyk** to set the following configur
## Executable settings
-These options allow you to customize the handling of the plugin dependency on Snyk CLI.
+These options let you customize the handling of the plugin dependency on Snyk CLI.
* **Base URL to download the CLI**: Allow specifying an alternative download location of the CLI. This location must conform to the same file and folder layout as `https://downloads.snyk.io`. For example, FIPS-supported CLIs would use the base URL `https://static.snyk.io/fips`.
* **Path to Snyk CLI**: Allow changing the file path of the Snyk CLI.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/jetbrains-plugin-folder-trust.md b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/jetbrains-plugin-folder-trust.md
index 2ffceed35dda..e2c7b14e065d 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/jetbrains-plugin-folder-trust.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/jetbrains-plugin-folder-trust.md
@@ -2,10 +2,10 @@
Snyk Open Source may automatically execute code on your computer to obtain additional data for analysis. This includes invoking the package manager, for example, pip, Gradle, Maven, Yarn, npm, and so on, to get dependency information. Invoking these programs on untrusted code that has malicious configurations may expose your system to malicious code execution and exploits.
-To safeguard against using the extension on untrusted Projects, the Snyk plugin asks for Project trust before allowing you to run any scans against your code. When in doubt, do not proceed with a scan.
+To safeguard against using the extension on untrusted Projects, the Snyk plugin asks for Project trust before you can run any scans against your code. When in doubt, do not proceed with a scan.
Snyk extension prompt to trust a project
-After a single Project trust is granted, Snyk will not ask for trust on the opened Project folder and its subfolders again. To revoke an existing folder trust, manually edit the `TRUSTED_PATHS` option in the `snyk.settings.xml` located in the [JetBrains IDE configuration options directory](https://www.jetbrains.com/help/idea/directories-used-by-the-ide-to-store-settings-caches-plugins-and-logs.html#config-directory).
+After you grant a single Project trust, Snyk does not ask for trust on the opened Project folder and its subfolders again. To revoke an existing folder trust, manually edit the `TRUSTED_PATHS` option in the `snyk.settings.xml` located in the [JetBrains IDE configuration options directory](https://www.jetbrains.com/help/idea/directories-used-by-the-ide-to-store-settings-caches-plugins-and-logs.html#config-directory).
Snyk recommends using the built-in [Trusted Projects](https://plugins.jetbrains.com/docs/intellij/trusted-projects.html) provided in the IntelliJ platform version 2021.2.4/2021.3.1 and higher for an extra layer of security.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/run-an-analysis-with-the-jetbrains-plugin.md b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/run-an-analysis-with-the-jetbrains-plugin.md
index 2084b35df853..28bf25812e2c 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/run-an-analysis-with-the-jetbrains-plugin.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/run-an-analysis-with-the-jetbrains-plugin.md
@@ -9,7 +9,7 @@ You can trigger `snyk test` using one of these methods:
* automatic (default)
* manual
-A Snyk scan is triggered automatically when you open your Project and when you save any supported files. This behavior can be turned off in [user experience configuration](configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md#user-experience).
+Snyk triggers a scan automatically when you open your Project and when you save any supported files. You can turn off this behavior in the [user experience configuration](configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md#user-experience).
{% hint style="info" %}
Ensure your files are saved before manually running an analysis.
@@ -25,7 +25,7 @@ To manually trigger `snyk test` , as illustrated in the following screen image:
## Scan configuration
-You may customize your scan behavior to reflect the security policy of your company or to focus on certain areas.
+You can customize your scan behavior to reflect the security policy of your company or to focus on certain areas.
### Severity filter
@@ -55,7 +55,7 @@ Snyk reports the following types of issues:
* Container issues: found in images sourced from Kubernetes workload files. For details, see the section [Snyk Container issues](run-an-analysis-with-the-jetbrains-plugin.md#snyk-container-issues).
{% hint style="info" %}
-The exact capabilities and available scanners depend on your plan. Be sure your Organization's admin has enabled all Snyk products prior to configuring any of them in the IDE plugin.
+The exact capabilities and available scanners depend on your plan. Ensure your Organization admin has enabled all Snyk products before you configure any of them in the IDE plugin.
{% endhint %}
There are two ways to show or hide specific issue types:
@@ -71,7 +71,7 @@ By default, all issue types shown are selected.
Beginning with plugin version [2.10.0](https://plugins.jetbrains.com/plugin/10972-snyk-security/versions/stable/623034), it is possible to see only newly introduced issues.
-This functionality reduces noise and allows you to focus only on current changes. This will prevent issues early, thus unblocking your CI/CD pipeline and speeding up your deliveries.
+This functionality reduces noise and lets you focus only on current changes. It prevents issues early, so it unblocks your CI/CD pipeline and speeds up your deliveries.
The logic uses your local Git repository or any folder to compare the current findings with those in a base branch or reference folder. Net new issues scanning (delta scanning) shows you the difference between the two branches or folders, highlighting only the new issues.
@@ -79,11 +79,11 @@ In plugin version 2.12.0 and later, you can choose any folder as your base for s
To apply the filter and see only the new issues, use the toggle in the summary panel.
-
Summary panel toggle showing the the total number of issues and the number of issues in the checked out branch or current folder or new issues only
+
Summary panel toggle showing the total number of issues and the number of issues in the checked out branch or current folder or new issues only
You can also enable the net new issues feature in the [scan configuration](run-an-analysis-with-the-jetbrains-plugin.md#scan-configuration) settings.\
\
-For newly created feature branches, there will be no reported issues. That is an intended state that developers would aim for, as illustrated in the screen image that follows:
+For newly created feature branches, there are no reported issues. That is an intended state that developers would aim for, as illustrated in the screen image that follows:
Successful state, no net new issues found
@@ -96,7 +96,7 @@ You can change the base branch or base folder by following these steps, as illus
1. Click on the top-level node in the issues tree.
2. Use the dropdown selection.
3. Choose any branch.
-4. Click OK to save the selection.
+4. Click **OK** to save the selection.
Choosing the base branch or folder
@@ -107,7 +107,7 @@ You can change the base branch or base folder by following these steps, as illus
Snyk Code analysis shows a list of security vulnerabilities and code quality issues found in your application code.
{% hint style="info" %}
-Effective beginning on June 24, 2025, Snyk Code Quality issues will no longer be provided.
+Effective beginning on June 24, 2025, Snyk no longer provides Snyk Code Quality issues.
{% endhint %}
For more details and examples of fixes others used to fix the issue, select the security vulnerability or the code security issue.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/troubleshooting-for-the-jetbrains-plugin.md b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/troubleshooting-for-the-jetbrains-plugin.md
index 947b98e44524..3fc65ec163c4 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/troubleshooting-for-the-jetbrains-plugin.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/jetbrains-plugin/troubleshooting-for-the-jetbrains-plugin.md
@@ -10,7 +10,7 @@ Snyk plugins are not supported on any operating system that has reached End Of L
When you enable `debug`, your code may be logged in the IDE log files, for example, the `idea.log` file.
{% endhint %}
-To enable Snyk Language Server debug logs in the JetBrains IDEs, change the log level to debug using the IDE by navigating to Debug Log Settings (Custom Debug Log Configuration).
+To enable Snyk Language Server debug logs in the JetBrains IDEs, change the log level to debug in the IDE by navigating to **Debug Log Settings** (**Custom Debug Log Configuration**).
Press the Shift key twice quickly and select the **Actions** tab. Then search for **Debug**. Alternatively, select the Debug Log Settings in the menu (not available in JetBrains Rider).
@@ -18,7 +18,7 @@ Press the Shift key twice quickly and select the **Actions** tab. Then search fo
Go to Custom Debug Log Configuration from Debug Log Settings
-Entering `Snyk Language Server` on its own line will enable debug logging of the Language Server. Restart the IDE to reload the Snyk Language Server with the new debug level logging enabled.
+Entering `Snyk Language Server` on its own line enables debug logging of the Language Server. Restart the IDE to reload the Snyk Language Server with the new debug level logging enabled.
Snyk Language Server configuration set to Debug Mode in the Custom Debug Log Configuration
@@ -35,13 +35,13 @@ See the [JetBrains documentation](https://www.jetbrains.com/help/idea/ssl-certif
Sometimes the checkboxes for Snyk Code in the JetBrains plugin are disabled. Some possible reasons follow:
* Network or proxy settings: If the network or proxy settings are not configured correctly, the checkboxes may be disabled. Check to see if there is an MITM proxy with certificate substitution. Also, verify whether connections to the endpoint API and deeproxy can be established using other tools, for example, the CLI or cURL.
-* Incorrect endpoint address. If the endpoint address in the Snyk Code plugin configuration is incorrect, the checkboxes will be disabled. To fix this, refer to the instructions and check that the endpoint address is correct. Restart the plugin afterwards.
-* Snyk Code is disabled server-side: If Snyk Code is disabled in the Snyk Organisation's settings, the checkboxes will be disabled. To fix this, follow the instructions shown in the IntelliJ settings. Restart your IDE.
+* Incorrect endpoint address. If the endpoint address in the Snyk Code plugin configuration is incorrect, the checkboxes are disabled. To fix this, refer to the instructions and check that the endpoint address is correct. Restart the plugin afterwards.
+* Snyk Code is disabled server-side: If Snyk Code is disabled in the Snyk Organization settings, the checkboxes are disabled. To fix this, follow the instructions shown in the IntelliJ settings. Restart your IDE.
* Have a look at the JetBrains logs: For additional information, see [Locating IDE log files](https://intellij-support.jetbrains.com/hc/en-us/articles/207241085-Locating-IDE-log-files).
## Undefined Python version
-Snyk uses Python in order to scan and find your dependencies.
+Snyk uses Python to scan and find your dependencies.
If you are using multiple Python versions, use the `--command` option to specify the correct Python command for execution. The plugin does not detect the Python version associated with the Project.
@@ -79,7 +79,7 @@ The `NullPointerException: Cannot read field "objId" because "robj" is null` enc
The most effective and recommended path to resolution is as follows:
-As of Android Studio Koala (2024.1.1), JCEF (Java Chromium Embedded Framework) is included but not enabled by default. To utilize JCEF features, you need to manually enable it by following these steps:
+As of Android Studio Koala (2024.1.1), JCEF (Java Chromium Embedded Framework) is included but not enabled by default. To use JCEF features, you need to manually enable it by following these steps:
#### Step 1: Disable the JCEF Sandbox
@@ -103,7 +103,7 @@ As of Android Studio Koala (2024.1.1), JCEF (Java Chromium Embedded Framework) i
Apply the IntelliJ IDEA VM option `-Dide.browser.jcef.out-of-process.enabled=false` to revert to the in-process JCEF mode, which is known to bypass the bug described in IJPL-186252.
-It is also advisable to keep IntelliJ IDEA updated to the latest patch release of version 2025.1.x or later, as future updates may include a permanent fix for IJPL-186252, rendering plugin-specific workarounds or manual VM option adjustments unnecessary. The dynamic between IDE platforms and their extensive plugin ecosystems often involves such diagnostic and adaptive challenges, where changes at one layer necessitate responses and adjustments at others to maintain overall system stability and user experience.
+It is also advisable to keep IntelliJ IDEA updated to the latest patch release of version 2025.1.x or later, as future updates may include a permanent fix for IJPL-186252, rendering plugin-specific workarounds or manual VM option adjustments unnecessary.
## How Snyk Container and Kubernetes JetBrains integration works
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/release-and-support-policy-for-snyk-ide-plugins.md b/developer-tools/snyk-ide-plugins-and-extensions/release-and-support-policy-for-snyk-ide-plugins.md
index 7d93cd727362..fb0e15463b1f 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/release-and-support-policy-for-snyk-ide-plugins.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/release-and-support-policy-for-snyk-ide-plugins.md
@@ -26,12 +26,10 @@ Examples of **breaking** changes include the following:
## Support policy
-Snyk supports the latest 12 months of plugin versions, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and will not receive bug fixes or troubleshooting.
+Snyk supports the latest 12 months of plugin versions, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and do not receive bug fixes or troubleshooting.
Snyk provides fixes only in new versions and cannot fix older versions. Customers must upgrade to benefit from improvements.
-This policy fosters innovation while optimizing resources.
-
If you need help, submit a [request](https://support.snyk.io) to Snyk Support.
## Preview builds
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/README.md b/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/README.md
index 0e170d2b577a..457c6fd8e508 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/README.md
@@ -1,6 +1,6 @@
# Snyk Language Server
-Snyk offers IDE integrations that allow you to use the functionality of Snyk in your Integrated Development Environment or Editor. This page describes the Snyk Language Server that can provide diagnostics for any IDE or Editor that supports the [Language Server Protocol](https://microsoft.github.io/language-server-protocol/). For information about all of the IDE plugins and extensions and their use, see [Snyk IDE plugins and extensions](../).
+Snyk offers IDE integrations that let you use the functionality of Snyk in your Integrated Development Environment or Editor. This page describes the Snyk Language Server that can provide diagnostics for any IDE or Editor that supports the [Language Server Protocol](https://microsoft.github.io/language-server-protocol/). For information about all of the IDE plugins and extensions and their use, see [Snyk IDE plugins and extensions](../).
The Snyk Language Server scans for vulnerabilities, open-source license issues, and infrastructure misconfigurations and returns results with security issues categorized by issue type and severity.
@@ -31,9 +31,9 @@ You can use the Language Server in the following environments:
## Where you can download the Language Server (Snyk CLI)
-Snyk Language Server is nowadays included in the Snyk CLI. The CLI is automatically downloaded only when you use the Snyk IDE plugins.
+Snyk Language Server is now included in the Snyk CLI. Snyk downloads the CLI automatically only when you use the Snyk IDE plugins.
-Please refer to [snyk-cli](../../snyk-cli/ "mention") for installation and manual download instructions.
+Refer to [snyk-cli](../../snyk-cli/ "mention") for installation and manual download instructions.
## Usage of Snyk Language Server
@@ -91,7 +91,7 @@ For all .NET Projects, Snyk recommends adding the `--all-projects` additional pa
## **Authentication for Snyk Language Server**
-When Snyk Language Server starts, it checks for a token in the initializationOption `token`. If a token is not there, Snyk Language Server tries to retrieve and authenticate.. If the CLI is not authenticated either, Snyk Language Server opens a browser window to authenticate. After successful authentication in the web browser, Snyk Language Server, in case of OAuth2 or API token authentication methods, automatically retrieves the Snyk authentication token from the CLI, but only for the session.
+When Snyk Language Server starts, it checks for a token in the initializationOption `token`. If a token is not there, Snyk Language Server tries to retrieve and authenticate. If the CLI is not authenticated either, Snyk Language Server opens a browser window to authenticate. After successful authentication in the web browser, Snyk Language Server, in case of OAuth2 or API token authentication methods, automatically retrieves the Snyk authentication token from the CLI, but only for the session.
## **Environment variables for Snyk Language Server**
@@ -112,14 +112,14 @@ given config file via -c flag
$HOME/.snyk.env
```
-Any lines that contain an environment variable in the format `VARIABLENAME=VARIABLEVALUE` are added automatically to the environment if not already there. This adheres to the `dotenv` format. In the case of `.profile`, `.zshrc`and so on, if a variable is directly exported, for example, via `export VARIABLENAME=VARIABLEVALUE`, it is not loaded. The export would need to be split of and be in its own line, for example
+Any lines that contain an environment variable in the format `VARIABLENAME=VARIABLEVALUE` are added automatically to the environment if not already there. This adheres to the `dotenv` format. In the case of `.profile`, `.zshrc`and so on, if a variable is directly exported, for example, via `export VARIABLENAME=VARIABLEVALUE`, it is not loaded. The export would need to be split off and be in its own line, for example
```bash
VARIABLENAME=VARIABLEVALUE
export VARIABLENAME
```
-The PATH variable is treated differently frrom all other variables, as it is an aggregate of all PATH variables found in the files and in the environment. Also, the current working directory `.` is automatically added to the path, so a download of the Snyk CLI into the current working directory by an LSP client would yield a found Snyk CLI for the Language Server.
+The PATH variable is treated differently from all other variables, as it is an aggregate of all PATH variables found in the files and in the environment. Also, the current working directory `.` is automatically added to the path, so a download of the Snyk CLI into the current working directory by an LSP client would yield a found Snyk CLI for the Language Server.
In addition to configuring variables via config files, Snyk Language Server adds the following directories to the path on Linux and macOS:
@@ -150,7 +150,7 @@ The trust feature is enabled by default. When a folder is trusted, all sub-folde
Trust dialogs can be disabled by setting `enableTrustedFoldersFeature` to `false` in the initialization options. This disables all trust prompts and checks.
-An initial set of trusted folders can be provided by setting `trustedFolders` to an array of paths in the `initializationOptions`. These folders will be trusted on startup and will not prompt the user to trust them.
+You can provide an initial set of trusted folders by setting `trustedFolders` to an array of paths in the `initializationOptions`. Snyk trusts these folders on startup and does not prompt the user to trust them.
## Telemetry
@@ -158,10 +158,8 @@ Snyk collects telemetry from IDE plugins and CLI. For details, see [IDE and CLI
## Support policy for Snyk Language Server
-Snyk supports the latest 12 months of LS versions, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and will not receive bug fixes or troubleshooting.
+Snyk supports the latest 12 months of LS versions, ensuring functionality and performance. Older versions are considered End-of-Support (EOS) and do not receive bug fixes or troubleshooting.
Snyk only provides fixes in new versions and cannot fix older versions. Customers must upgrade to benefit from improvements.
-This policy fosters innovation while optimizing resources.
-
If you need help, submit a [request](https://support.snyk.io) to Snyk Support.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/example-configurations-for-snyk-language-server.md b/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/example-configurations-for-snyk-language-server.md
index 62e8c180bb91..090504ba0b97 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/example-configurations-for-snyk-language-server.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/snyk-language-server/example-configurations-for-snyk-language-server.md
@@ -32,7 +32,7 @@
}
```
-After opening a supported file, the Language Server should be started by Sublime Text and findings will be highlighted.
+After you open a supported file, Sublime Text starts the Language Server and highlights findings.
.png>)
@@ -44,7 +44,7 @@ After opening a supported file, the Language Server should be started by Sublime
If the project root directory cannot be obtained from Git information, this script tries to set the root directory to your home directory by `vim.loop.os_homedir().` Depending on the contents of your home directory, this may consume a large amount of memory. If this happens, set an alternative root directory for your environment.
{% endhint %}
-The set up is as follows:
+The setup is as follows:
```
mkdir -p ~/.config/nvim
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/error-executing-binary-because-of-corporate-policy-windows.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/error-executing-binary-because-of-corporate-policy-windows.md
index 08870f6270e6..0dd68470c306 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/error-executing-binary-because-of-corporate-policy-windows.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/error-executing-binary-because-of-corporate-policy-windows.md
@@ -8,4 +8,4 @@ Snyk is trying to run files from AppData but that is not allowed under the custo
As part of operations of the Snyk CLI, it extracts different files and executables to a temporary folder, which for Windows is located in `C:\Users\\\\AppData\\`.
-If running files from this location is not allowed by group policy or other security restrictions, set the environment variable `SNYK_CACHE_PATH` on each machine. This will override the directory Snyk uses for the cache.
+If running files from this location is not allowed by group policy or other security restrictions, set the environment variable `SNYK_CACHE_PATH` on each machine. This overrides the directory Snyk uses for the cache.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/force-use-of-the-latest-language-server.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/force-use-of-the-latest-language-server.md
index df563d03b007..aa20d6b241f0 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/force-use-of-the-latest-language-server.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/force-use-of-the-latest-language-server.md
@@ -3,14 +3,14 @@
Follow these steps to force the use of the latest Snyk Language Server:
* Update the Snyk plugin or extension to the latest version. Using the latest version of the plugin ensures that you can update to the most recent version of the language server. The plugin update alone does NOT update the language server.
-* Look up the Snyk Language Server binary path (`snyk-ls*`) or the Snyk CLI binary path in the Snyk Settings of the plugin. You must know the path of the binary file in order to delete it. Follow these instructions depending on IDE:
+* Look up the Snyk Language Server binary path (`snyk-ls*`) or the Snyk CLI binary path in the Snyk Settings of the plugin. You must know the path of the binary file to delete it. Follow these instructions depending on IDE:
* [VS Code](../visual-studio-code-extension/visual-studio-code-extension-configuration-environment-variables-and-proxy.md)
* [JetBrains](../jetbrains-plugin/configuration-for-the-snyk-jetbrains-plugin-and-ide-proxy.md)
* [Visual Studio](../visual-studio-extension/visual-studio-extension-configuration-environment-variables-and-proxy.md)
* [Eclipse](../eclipse-plugin/configuration-of-the-eclipse-plugin.md)
* Delete the binary from that path.
-* Enable **Automatic Management of dependencies** in the Snyk Settings or download the latest language server from [GitHub](https://github.com/snyk/snyk-ls) or use the [getLanguageServer.sh](https://github.com/snyk/snyk-ls/blob/main/getLanguageServer.sh) . If you enable **Automatic** **Management of dependencies**, the latest language server will be downloaded automatically.
+* Enable **Automatic Management of dependencies** in the Snyk Settings or download the latest language server from [GitHub](https://github.com/snyk/snyk-ls) or use the [getLanguageServer.sh](https://github.com/snyk/snyk-ls/blob/main/getLanguageServer.sh) . If you enable **Automatic** **Management of dependencies**, Snyk downloads the latest language server automatically.
* After completing the previous steps, restart your IDE.
- Note that if you can not find the path, the output of the plugin may specify the path of `snyk-ls` binaries:\
+ Note that if you cannot find the path, the output of the plugin may specify the path of `snyk-ls` binaries:\
`[Info] Snyk Language Server path: /Users/matthew/Library/Application Support/snyk-ls/snyk-ls_darwin_amd64`
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/how-to-set-environment-variables-by-operating-system-for-ides-and-cli.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/how-to-set-environment-variables-by-operating-system-for-ides-and-cli.md
index 04219dc52c46..8e7e55a65358 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/how-to-set-environment-variables-by-operating-system-for-ides-and-cli.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/how-to-set-environment-variables-by-operating-system-for-ides-and-cli.md
@@ -21,7 +21,7 @@ The fundamental things to understand are:
* Environment variables are inherited by a process’s children at the time they are forked.
* The root process is a `launchd` instance, and there is also a separate `launchd` instance per user session.
-* `launchd` allows you to change its current environment variables using `launchctl`; the updated variables are then inherited by all new processes it forks from then on.
+* `launchd` lets you change its current environment variables using `launchctl`. All new processes it forks from then on inherit the updated variables.
You can verify if IntelliJ runs using this environment variable using `ps eww -o command | tr ' ' '\\n'` command.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/ide-plugin-fails-with-scan-failed-on-windows-systems-with-.exe-download-blocking.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/ide-plugin-fails-with-scan-failed-on-windows-systems-with-.exe-download-blocking.md
index c69d9a8a9dbd..ef613a8444c1 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/ide-plugin-fails-with-scan-failed-on-windows-systems-with-.exe-download-blocking.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/ide-plugin-fails-with-scan-failed-on-windows-systems-with-.exe-download-blocking.md
@@ -18,7 +18,7 @@ To determine if this is the case, navigate to the location for the CLI or Langua
The preferred solution for this is to allowlist `downloads.snyk.io` and `static.snyk.io` in the baseline policy for `.exe` files, so that downloads from this location are exempt from `.exe` popup approvals for all users.
-You can use the following temporary solutions in the interim if the preferred solution will take time to approve.
+You can use the following temporary solutions in the interim if the preferred solution takes time to approve.
* Manually download the relevant `.exe` file directly from either [Snyk CLI Releases](https://github.com/snyk/cli/releases) or [Snyk Language Server Releases](https://github.com/snyk/snyk-ls/releases), and place it in the location listed in your plugin settings. Ensure that you turn off the option to **Automatically Manage Dependencies**.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/maven-scans-with-private-repositories.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/maven-scans-with-private-repositories.md
index 1caacd4249c8..3ee4482321a1 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/maven-scans-with-private-repositories.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/maven-scans-with-private-repositories.md
@@ -2,7 +2,7 @@
## Problem
-Maven fails due to dependencies that reference private repositories in Ithe IDE plugin or CI/CD pipeline.
+Maven fails due to dependencies that reference private repositories in the IDE plugin or CI/CD pipeline.
## Investigation
@@ -16,4 +16,4 @@ Dependencies need to be downloaded from a private repository and the Snyk CLI sh
You can establish Maven settings or a profile containing the connection information, for example, with `-- -s your-home-directory/.m2/settings.xml` or `-- -Dprofile=my-profile`.
-These parameters can be passed on to the CLI using the `Additional Parameters` plugin setting in IDE. For CI/CDs. this should be passed as a pipeline argument if the Snyk CLI used directly, or a correct path mapping should be provided, if run in Docker image.
+You can pass these parameters on to the CLI using the `Additional Parameters` plugin setting in the IDE. For CI/CD, pass them as a pipeline argument if you use the Snyk CLI directly, or provide a correct path mapping if you run it in a Docker image.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/missing-or-differing-results-in-snyk-code.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/missing-or-differing-results-in-snyk-code.md
index 1828149f867b..4286f8daac7e 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/missing-or-differing-results-in-snyk-code.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/missing-or-differing-results-in-snyk-code.md
@@ -7,5 +7,5 @@
* If the result is now better, check the rules in `.gitignore` and `.dcignore` files to see if they cause the ignoring of files.
* Ignores can be analyzed in Jetbrains by enabling debug logging for the Snyk Code logger.
* Ignores can be analyzed in the Language Server by enabling trace logging, for example, by setting the env-variable `SNYK_DEBUG_LEVEL=trace.`
-* Enable ignore patterns step-by-step until results are correct, and the only files that are ignored should be ignored.
+* Enable ignore patterns step-by-step until results are correct and only the intended files are ignored.
* If the `.dcignore` is filled with a lot of ignores and was created automatically, it should be emptied. IntelliJ before 2.4.63 added this file automatically when no `.gitignore` was found at the top level. It contained many rules that can interfere with repositories and source files.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/net-new-issues-delta-scan-troubleshooting.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/net-new-issues-delta-scan-troubleshooting.md
index e8dcf061664d..3bf216aa138f 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/net-new-issues-delta-scan-troubleshooting.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/net-new-issues-delta-scan-troubleshooting.md
@@ -13,6 +13,6 @@ Some package managers, such as NuGet, pip, npm, and so on, require specific mani
Required manifest files must be generated before you can perform a scan analysis. These files, for example, `package-lock.json` or `obj/project.assets.json` for NuGet must have been generated on the current branch or folder and either:
* Be committed to the reference branch before the scan
-* Be prepared (compiled) into a different directory, that will be used as a reference folder for Snyk scan
+* Be prepared (compiled) into a different directory that Snyk uses as a reference folder for the scan
Choose the reference branch or folder
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/server-returned-http-response-code-403-for-url.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/server-returned-http-response-code-403-for-url.md
index abf280c79c7a..d8455278bdf5 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/server-returned-http-response-code-403-for-url.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/server-returned-http-response-code-403-for-url.md
@@ -2,6 +2,6 @@
Check the endpoint URL and the authentication information.
-Most likely the API URL or the token is not ok. They need to use [https://api.snyk.io](https://api.snyk.io) without `/api` . For other tenants, the situation is similar: the path `/api` is not supported on the `api` subdomain.
+Most likely the API URL or the token is incorrect. They need to use [https://api.snyk.io](https://api.snyk.io) without `/api` . For other tenants, the situation is similar: the path `/api` is not supported on the `api` subdomain.
-Even if the URL may have worked before, the URL is invalid and must be changed.
+Even if the URL worked before, the URL is invalid and you must change it.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/troubleshoot-certificate-errors.md b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/troubleshoot-certificate-errors.md
index faae60fad6d4..8c5d13e4f7ae 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/troubleshoot-certificate-errors.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/troubleshooting-ides/troubleshoot-certificate-errors.md
@@ -23,8 +23,8 @@ See [Import the Certificate as a Trusted Certificate (The Java™ Tutorials > Se
Allow unknown certificate authorities
* Update the JDK used by Snyk scans to add unknown certificates.
-* Update to the latest CLI and pugin version.
-* CLI download can be re-triggered by deleting the CLI. The path is shown in the Snyk Preferences.
+* Update to the latest CLI and plugin version.
+* To re-trigger the CLI download, delete the CLI. The path is shown in the Snyk Preferences.
### IntelliJ
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/unified-ide-configuration-dialog-experimental.md b/developer-tools/snyk-ide-plugins-and-extensions/unified-ide-configuration-dialog-experimental.md
index a1184aa53272..08f2a80f80cc 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/unified-ide-configuration-dialog-experimental.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/unified-ide-configuration-dialog-experimental.md
@@ -54,7 +54,7 @@ If you disable the new settings page, your configurations remain active. These s
| Issue View Options \| Show Open Issues | Show issues that are not ignored |
| Issue View Options \| Show Ignored Issues | Show issues that are ignored |
| Filter by Risk Score | Only show issues with a risk score above or equal to the given numeric threshold |
-| Delta Findings |
All Issues: show all issues Net-New Issues: show only newly introduced issues.
|
## Authentication
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/README.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/README.md
index 99b1b1badb95..d3ad4ebf0ae3 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/README.md
@@ -2,9 +2,9 @@
## **Scan early, fix as you develop: elevate your security posture**
-Integrating security checks early in your development lifecycle helps you pass security reviews seamlessly and avoid expensive fixes down the line.
+Integrating security checks early in your development lifecycle helps you pass security reviews and avoid expensive fixes down the line.
-The Snyk Visual Studio Code extension allows you to analyze your code, open-source dependencies, and Infrastructure as Code (IaC) configurations. With actionable insights directly in your IDE, you can address issues as they arise.
+The Snyk Visual Studio Code extension lets you analyze your code, open-source dependencies, and Infrastructure as Code (IaC) configurations. With actionable insights directly in your IDE, you can address issues as they arise.
{% hint style="info" %}
The extension also works for other VSCode-based IDEs such as Windsurf, Cursor, and Eclipse Theia.
@@ -12,7 +12,7 @@ The extension also works for other VSCode-based IDEs such as Windsurf, Cursor, a
**Key features:**
-* **In-line issue highlighting:** Security issues are flagged directly within your code, categorized by type and severity for quick identification and resolution.
+* **In-line issue highlighting:** Snyk flags security issues directly within your code, categorized by type and severity for quick identification and resolution.
* **Comprehensive scanning:** The extension scans for a wide range of security issues, including:
* [**Open Source Security**](https://snyk.io/product/open-source-security-management/)**:** Detects vulnerabilities and license issues in both direct and transitive open-source dependencies. Automated fix suggestions simplify remediation. Explore more in the [Snyk Open Source documentation](https://docs.snyk.io/scan-using-snyk/snyk-open-source).
* [**Code Security**](https://snyk.io/product/snyk-code/)**:** Identifies security vulnerabilities in your custom code. Explore more in the [Snyk Code documentation](https://docs.snyk.io/scan-using-snyk/snyk-code).
@@ -41,7 +41,7 @@ Snyk Visual Studio Code extension does not support remote and containerized envi
Install the plugin at any time free of charge from the [Visual Studio Code marketplace](https://marketplace.visualstudio.com/items?itemName=snyk-security.snyk-vulnerability-scanner) and use it with any Snyk account, including a Free account. For more information, see the [VS Code extension installation guide](https://code.visualstudio.com/docs/editor/extension-marketplace#_install-an-extension).
-When the extension is installed, it automatically downloads the [Snyk CLI,](https://docs.snyk.io/snyk-cli) which includes the [Language Server](https://docs.snyk.io/scm-ide-and-ci-cd-integrations/snyk-ide-plugins-and-extensions/snyk-language-server).
+When you install the extension, it automatically downloads the [Snyk CLI,](https://docs.snyk.io/snyk-cli) which includes the [Language Server](https://docs.snyk.io/scm-ide-and-ci-cd-integrations/snyk-ide-plugins-and-extensions/snyk-language-server).
Continue by following the instructions in the other Visual Studio Code extension docs:
@@ -52,7 +52,7 @@ Continue by following the instructions in the other Visual Studio Code extension
* [Run an analysis with Visual Studio Code extension](https://docs.snyk.io/integrate-with-snyk/use-snyk-in-your-ide/visual-studio-code-extension/run-an-analysis-with-visual-studio-code-extension)
* [View analysis results from Visual Studio Code extension](https://docs.snyk.io/integrate-with-snyk/use-snyk-in-your-ide/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension)
-When the VS Code extension is installed for the first time, a modal will pop up asking users if they want to enable Secure at Inception capabilities via Snyk Studio. With Secure at Inception enabled, a file such as snyk\_rules.mdc may be written to the directory.
+When you install the VS Code extension for the first time, a modal asks whether you want to enable Secure at Inception capabilities through Snyk Studio. With Secure at Inception enabled, Snyk may write a file such as snyk\_rules.mdc to the directory.
For more information, see the Snyk Studio quickstart guides for [Cursor](https://app.gitbook.com/s/N5N885PkllOWeBmgm3Bp/agentic-security-with-snyk-studio/quickstart-guides/cursor-guide), [Windsurf](https://app.gitbook.com/s/N5N885PkllOWeBmgm3Bp/agentic-security-with-snyk-studio/quickstart-guides/windsurf-guide), and [Copilot](https://app.gitbook.com/s/N5N885PkllOWeBmgm3Bp/agentic-security-with-snyk-studio/quickstart-guides/github-copilot-guide).
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/authentication-for-visual-studio-code-extension.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/authentication-for-visual-studio-code-extension.md
index 66474475340a..413027e8bf8c 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/authentication-for-visual-studio-code-extension.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/authentication-for-visual-studio-code-extension.md
@@ -18,7 +18,7 @@ Before authenticating, ensure you have set your region properly. For details, se
Follow these steps to authenticate:
-1. After the extension is installed, click the **Snyk Icon** in the navigation bar, then click **Connect & Trust Workspace**:
+1. After you install the extension, click the **Snyk Icon** in the navigation bar, then click **Connect & Trust Workspace**:
Connect and trust workspace
2. A new browser window opens, requiring you to log in to your Snyk account.
@@ -39,13 +39,13 @@ If you have problems, see [OAuth 2.0 authentication does not work](../troublesho
{% include "../../.gitbook/includes/this-method-is-inferior-to-....md" %}
{% hint style="warning" %}
-The Personal Access Token (PAT) authentication is progressively rolled out to all Enterprise customers. To check if this feature is available for your Organization at this time, please reach out to your Snyk account team.
+Snyk is progressively rolling out Personal Access Token (PAT) authentication to all Enterprise customers. To check whether this feature is available for your Organization at this time, contact your Snyk account team.
{% endhint %}
When using this feature, ensure you generate and use a Personal Access Token (PAT). This feature is not compatible with Service Account tokens, and using them may result in unexpected behavior or errors.
{% hint style="info" %}
-Whenever you use this feature in your IDE, ensure to also retrieve the PAT details from the Snyk Web UI. Contact Snyk Support to enable the PAT feature within your Snyk Web UI Organization.
+Whenever you use this feature in your IDE, also retrieve the PAT details from the Snyk Web UI. Contact Snyk Support to enable the PAT feature in your Snyk Web UI Organization.
{% endhint %}
To authenticate using the Personal Access token, follow these steps:
@@ -64,7 +64,7 @@ To authenticate using the Personal Access token, follow these steps:
Follow these steps to authenticate:
-1. After the extension is installed, click the **Snyk Icon** in the navigation bar, then click the **Settings** icon, find **Authentication Method**, and change it to **Token authentication**:
+1. After you install the extension, click the **Snyk Icon** in the navigation bar, then click the **Settings** icon, find **Authentication Method**, and change it to **Token authentication**:
Change authentication method
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/run-an-analysis-with-visual-studio-code-extension.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/run-an-analysis-with-visual-studio-code-extension.md
index 0597b0fe1883..39b7913e2fee 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/run-an-analysis-with-visual-studio-code-extension.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/run-an-analysis-with-visual-studio-code-extension.md
@@ -9,7 +9,7 @@ You can trigger `snyk test` by using one of these methods:
* automatic (default)
* manual
-Snyk Code and IaC configuration scans are triggered automatically when you open your Project and when you save any supported files. This behavior can be turned off in [user experience configuration](visual-studio-code-extension-configuration-environment-variables-and-proxy.md#user-experience).
+Snyk Code and IaC configuration scans run automatically when you open your Project and when you save any supported files. You can turn off this behavior in the [user experience configuration](visual-studio-code-extension-configuration-environment-variables-and-proxy.md#user-experience).
Snyk Open Source, by default, does not automatically run on save, but you can enable auto-scan in the configuration settings.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/README.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/README.md
index b30f8f14c49e..fda9edd914be 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/README.md
@@ -2,7 +2,7 @@
## Overview of results
-Snyk analysis shows a list of security vulnerabilities and code issues in the application code. Select a security vulnerability or a code security issue to view more details and examples of how others fixed the issue. The **Issue details panel** appears in a tab on the right side of the screen, as shown in following screen image.
+Snyk analysis shows a list of security vulnerabilities and code issues in the application code. Select a security vulnerability or a code security issue to view more details and examples of how others fixed the issue. The **Issue details panel** appears in a tab beside the code, as shown in the following screen image.
The **Snyk analysis panel** on the left shows the time the analysis took and a list of issues with the suggestions found for those issues.
@@ -35,7 +35,7 @@ Snyk reports the following types of issues:
* Infrastructure as Code issues: Found in infrastructure as code files; For more details, see [Snyk IaC Analysis results: Snyk IaC Configuration](analysis-results-snyk-iac-configuration.md).
{% hint style="info" %}
-The exact capabilities and available scanners depend on your Snyk plan. Be sure your Organization's admin enabled all Snyk products prior to configuring any of them in the IDE plugin.
+The exact capabilities and available scanners depend on your Snyk plan. Ensure your Organization admin enabled all Snyk products before configuring any of them in the IDE plugin.
{% endhint %}
You can set the issue types to be shown in the Scan configuration settings. By default, all issue types shown are selected.
@@ -44,7 +44,7 @@ You can set the issue types to be shown in the Scan configuration settings. By d
Starting with Visual Studio Code extension version 2.19.0, it is possible to see only newly introduced issues.
-This functionality reduces noise and allows you to focus only on current changes. This helps prevent issues early, thus unblocking your CI/CD pipeline and speeding up your deliveries.
+This functionality reduces noise and lets you focus only on current changes. This helps prevent issues early, unblocking your CI/CD pipeline and speeding up your deliveries.
The logic uses your local Git repository or any folder to compare the current findings with those in a base branch or reference folder. Net new issues scanning (delta scanning) shows you the difference between the two branches or folders, highlighting only the new issues.
@@ -58,7 +58,7 @@ To apply the filter and see only the new issues, use the **total** or **new** to
You can also enable the net new issues feature in the [scan configuration](./#scan-configuration) settings for the extension.
-For newly created feature branches, there will be no reported issues. That is an intended state that developers would aim for, as shown in the screen image that follows:
+For newly created feature branches, Snyk reports no issues. That is an intended state that developers aim for, as shown in the screen image that follows:
Successful state. No net new issues found.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/analysis-results-snyk-code.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/analysis-results-snyk-code.md
index cba4bd0b0b35..f4f5a7db959d 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/analysis-results-snyk-code.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/view-analysis-results-from-visual-studio-code-extension/analysis-results-snyk-code.md
@@ -16,7 +16,7 @@ On the **Problems** tab of the Visual Studio Code results screen, you can see al
Visual Studio Code Problems tab
-Snyk also includes a feedback mechanism to report false positives so others do not see the same issue (bottom left).
+Snyk also includes a feedback mechanism to report false positives so others do not see the same issue.
## Snyk Code editor window
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-extension-configuration-environment-variables-and-proxy.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-extension-configuration-environment-variables-and-proxy.md
index d29bb30c20a6..56f3f6e48987 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-extension-configuration-environment-variables-and-proxy.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-extension-configuration-environment-variables-and-proxy.md
@@ -8,8 +8,8 @@ After the plugin is installed, you can set the following configurations for the
* **Authentication method:** Specify whether to authenticate with OAuth2 or with an API token. `OAuth2` is the default
* **Custom Endpoint**: Specify the Snyk API endpoint for a custom multi-tenant or single-tenant setup. If you are using `https://api.snyk.io`, no configuration is required. For details, see the list of [IDE URLs](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls).\
- Multi-tenant users who do not belong to the `SNYK-US-01` region will be automatically redirected to the correct domain for the email with which the user authenticated. The redirect does not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
-* **Organization**: Sets the Organization to run `snyk test` against, similar to the `--org=` option in the CLI. Snyk recommends using the `ORG_ID`. If you specify an Organization slug name, the value must match the URL slug as displayed in the URL of your Organization in the Snyk UI: `https://app.snyk.io/org/[orgslugname]`. If the Organization value is blank or invalid, the preferred Organization defined in your [web account settings](https://app.snyk.io/account) will be used. Setting the Organization at the Folder level is Experimental.
+ Snyk automatically redirects multi-tenant users who do not belong to the `SNYK-US-01` region to the correct domain for the email with which the user authenticated. The redirect does not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
+* **Organization**: Sets the Organization to run `snyk test` against, similar to the `--org=` option in the CLI. Snyk recommends using the `ORG_ID`. If you specify an Organization slug name, the value must match the URL slug as displayed in the URL of your Organization in the Snyk UI: `https://app.snyk.io/org/[orgslugname]`. If the Organization value is blank or invalid, Snyk uses the preferred Organization defined in your [web account settings](https://app.snyk.io/account). Setting the Organization at the Folder level is Experimental.
* **Auto-select Organization**: When enabled, Snyk automatically selects the most appropriate Organization for your Project using context found in your repository and your authentication. If an Organization is configured manually, this feature is overridden. If an appropriate Organization cannot be identified automatically, the preferred Organization defined in your [web account settings](https://app.snyk.io/account) is used as a fallback.
* **Send error reports to Snyk**: Help Snyk to improve the stability of the plugin by analyzing such reports.
@@ -43,7 +43,7 @@ These settings are not part of the stable functionality and are not officially s
## CLI and Language Server
-* When **Automatic Dependency Management** is checked, the plugin will download the [CLI](../../snyk-cli/) and update it regularly to the defined CLI path, if defined. Uncheck this option if downloading the CLI is not possible due to your network configuration, for example, due to firewall rules, and you need to obtain this dependency through other means.
+* When **Automatic Dependency Management** is checked, the plugin downloads the [CLI](../../snyk-cli/) and updates it regularly to the defined CLI path, if defined. Uncheck this option if downloading the CLI is not possible due to your network configuration, for example, due to firewall rules, and you need to obtain this dependency through other means.
* **CLI Path:** Allow changing the file path of the CLI (optional field).
## Environment variables
@@ -59,7 +59,7 @@ Setting these variables only in a shell environment, for example, using `~/.bash
* On macOS, the process `launchd` must know the environment variables to launch the IDE from the Finder directly. You can set environment variables for applications launched using the Finder by using the `launchctl setenv` command, for example, on start-up or through a script you launch at user login.
{% hint style="info" %}
-The provision of environment variables to the `macOS` UI can change between operating system releases, so it may be easier to create a small shell script that launches the IDE to leverage the shell environment that can be defined using `~/.bashrc`.
+The provision of environment variables to the `macOS` UI can change between operating system releases, so it may be easier to create a small shell script that launches the IDE to use the shell environment that can be defined using `~/.bashrc`.
{% endhint %}
* On Linux, updating the `file /etc/environment` can propagate environment variables to the Windows manager and UI.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-workspace-trust.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-workspace-trust.md
index ef681fc90671..010e38039ce3 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-workspace-trust.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-code-extension/visual-studio-code-workspace-trust.md
@@ -2,10 +2,10 @@
As part of examining the codebase for vulnerabilities, Snyk may automatically execute code on your computer to obtain additional data for analysis. This includes invoking the package manager, for example, pip, Gradle, Maven, Yarn, npm, and so on, to get dependency information for Snyk Open Source. Invoking these programs on untrusted code that has malicious configurations may expose your system to malicious code execution and exploits.
-In addition to the built-in [Workspace Trust](https://code.visualstudio.com/docs/editor/workspace-trust) feature of Visual Studio Code, the Snyk extension will ask for folder trust before allowing you to run any scans against your code. When in doubt, do not proceed with a scan.
+In addition to the built-in [Workspace Trust](https://code.visualstudio.com/docs/editor/workspace-trust) feature of Visual Studio Code, the Snyk extension asks for folder trust before allowing you to run any scans against your code. When in doubt, do not proceed with a scan.
Request to trust folders
-After a single Project trust is granted, Snyk will not ask for trust on the opened folder and its subfolders again. If you did not grant trust the first time, the extension will ask again the next time when you restart your Visual Studio Code instance.
+After a single Project trust is granted, Snyk does not ask for trust on the opened folder and its subfolders again. If you did not grant trust the first time, the extension asks again the next time you restart your Visual Studio Code instance.
To revoke an existing folder trust or grant trust to more folders, you can navigate to the Snyk extension settings and edit the **Trusted Folders** (`snyk.trustedFolders`) setting.
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/README.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/README.md
index 6401efd9dd2d..1515940efad7 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/README.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/README.md
@@ -6,9 +6,9 @@ Visual Studio 2026 not supported.
## Scan early, fix as you develop: elevate your security posture
-Integrating security checks early in your development lifecycle helps you pass security reviews seamlessly and avoid expensive fixes down the line.
+Integrating security checks early in your development lifecycle helps you pass security reviews and avoid expensive fixes down the line.
-The Snyk Visual Studio extension allows you to analyze your code, infrastructure configuration, and open-source dependencies. With actionable insights directly in your IDE, you can address issues as they arise.
+The Snyk Visual Studio extension lets you analyze your code, infrastructure configuration, and open-source dependencies. With actionable insights directly in your IDE, you can address issues as they arise.
**Key features**:
@@ -25,7 +25,7 @@ The Snyk Visual Studio extension allows you to analyze your code, infrastructure
You can use the Snyk Visual Studio extension in the following environments:
* Windows: 386, AMD64, and ARM64
-* MacOS: Visual Studio Windows plugin in a Windows virtual machine inside a Mac with an ARM64 processor
+* macOS: Visual Studio Windows plugin in a Windows virtual machine inside a Mac with an ARM64 processor
Install the plugin at any time free of charge from the [Visual Studio marketplace](https://marketplace.visualstudio.com/items?itemName=snyk-security.snyk-vulnerability-scanner-vs-2022) and use it with any Snyk account, including the Free plan. For more information, see the [VS extension installation guide](https://learn.microsoft.com/en-us/visualstudio/ide/finding-and-using-visual-studio-extensions?view=vs-2022#find-and-install-extensions).
@@ -35,7 +35,7 @@ After the extension is installed, use Snyk through the **Extensions > Snyk** men
You can also open the Snyk tool window using **View** > **Other Windows** > **Snyk**.
-When the extension is installed, it automatically downloads the [Snyk CLI,](https://docs.snyk.io/snyk-cli) which includes the [Language Server](https://docs.snyk.io/scm-ide-and-ci-cd-integrations/snyk-ide-plugins-and-extensions/snyk-language-server).
+When you install the extension, it automatically downloads the [Snyk CLI,](https://docs.snyk.io/snyk-cli) which includes the [Language Server](https://docs.snyk.io/scm-ide-and-ci-cd-integrations/snyk-ide-plugins-and-extensions/snyk-language-server).
Continue by following the instructions in the other Visual Studio extension docs:
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/authentication-for-visual-studio-extension.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/authentication-for-visual-studio-extension.md
index ccef2a0dedd2..ed3173830ff7 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/authentication-for-visual-studio-extension.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/authentication-for-visual-studio-extension.md
@@ -14,7 +14,7 @@ Snyk supports the following protocols for authentication:
Follow the next steps to authenticate:
-1. After the extension is installed, navigate to **Extensions** > **Snyk** > **Windows**, and then **Snyk** to open the Snyk panel.
+1. After you install the extension, navigate to **Extensions** > **Snyk** > **Windows**, and then **Snyk** to open the Snyk panel.
Snyk extension navigation
@@ -29,7 +29,7 @@ Follow the next steps to authenticate:
The analysis starts automatically. The IDE reads and saves the authentication on your local machine.
{% hint style="info" %}
-You might encounter the browser redirecting to 127.0.0.1:8080. This is normal, and you would need to retry the steps above.
+You might encounter the browser redirecting to 127.0.0.1:8080. This is normal; retry the authentication steps.
{% endhint %}
@@ -45,7 +45,7 @@ If you have problems, see [OAuth 2.0 authentication does not work](../troublesho
{% include "../../.gitbook/includes/this-method-is-inferior-to-....md" %}
{% hint style="warning" %}
-The Personal Access Token (PAT) authentication is progressively rolled out to all Enterprise customers. To check if this feature is available for your Organization at this time, please reach out to your Snyk account team.
+Snyk is progressively rolling out Personal Access Token (PAT) authentication to all Enterprise customers. To check whether this feature is available for your Organization at this time, contact your Snyk account team.
{% endhint %}
To authenticate using the Personal Access token, follow these steps:
@@ -65,7 +65,7 @@ To authenticate using the Personal Access token, follow these steps:
Follow these steps to authenticate:
-1. After the extension is installed, navigate to **Extensions** > **Snyk** > **Settings**:
+1. After you install the extension, navigate to **Extensions** > **Snyk** > **Settings**:
Snyk Settings navigation
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/run-an-analysis-with-visual-studio-extension.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/run-an-analysis-with-visual-studio-extension.md
index de034b4733ce..5f4ea47642f7 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/run-an-analysis-with-visual-studio-extension.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/run-an-analysis-with-visual-studio-extension.md
@@ -11,7 +11,7 @@ The extension provides two kinds of results:
## Open Source vulnerabilities
-Note that your solution must be built successfully in order to allow the CLI to pick up the dependencies and find the vulnerabilities.
+Note that your solution must be built successfully to allow the CLI to pick up the dependencies and find the vulnerabilities.
If you see only npm vulnerabilities or vulnerabilities that are not related to your C#/.NET Projects, your Project may not have been built successfully and thus not detected by the CLI. If you have difficulty or questions, submit a request to [Snyk Support](https://support.snyk.io).
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/troubleshooting-and-known-issues-with-visual-studio-extension.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/troubleshooting-and-known-issues-with-visual-studio-extension.md
index c099679e0d21..0827e4c5c95b 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/troubleshooting-and-known-issues-with-visual-studio-extension.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/troubleshooting-and-known-issues-with-visual-studio-extension.md
@@ -31,7 +31,7 @@ To enable Snyk Language Server debug logs in Visual Studio, add `-d` parameter t
Adding the debug parameter
-Press OK and restart the IDE after adding the parameter.
+Click **OK** and restart the IDE after adding the parameter.
#### View Log file
@@ -82,7 +82,7 @@ If a user has a bug with the Snyk plugin, especially bugs where the plugin fails
### Snyk Code ignores
-Snyk Code allows developers to ignore files in their codebase. This is done through the use of Snyk Code Ignores. However, in Visual Studio, the `.snyk` file cannot be used to manage Snyk Code Ignores for C# Projects. Instead, developers must use `.dcignore` or `.gitignore` files to manage Code Ignores for C# Projects in Visual Studio.
+Snyk Code lets developers ignore files in their codebase using Snyk Code Ignores. However, in Visual Studio, you cannot use the `.snyk` file to manage Snyk Code Ignores for C# Projects. Instead, developers must use `.dcignore` or `.gitignore` files to manage Code Ignores for C# Projects in Visual Studio.
### Settings storage
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/view-analysis-results-from-visual-studio-extension.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/view-analysis-results-from-visual-studio-extension.md
index 9fa84441cbd0..db057d4fdb3c 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/view-analysis-results-from-visual-studio-extension.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/view-analysis-results-from-visual-studio-extension.md
@@ -20,7 +20,7 @@ Users can configure the Snyk extension using the **Solution settings** in the **
For Projects using Git repositories or when you specify a reference folder, Snyk can filter the displayed issues to show only issues introduced in the working branch.
-This functionality reduces noise and allows you to focus only on current changes. This helps prevent issues early, thus unblocking your CI/CD pipeline and speeding up your deliveries.
+This functionality reduces noise and lets you focus only on current changes. This helps prevent issues early, unblocking your CI/CD pipeline and speeding up your deliveries.
The logic uses your local Git repository or any folder to compare the current findings with those in a base branch or reference folder. Net new issues scanning (delta scanning) shows you the difference between the two branches or folders, highlighting only the new issues.
@@ -32,7 +32,7 @@ To apply the filter and only see the new issues, use the **total/new** toggle in
You can also enable net new issues feature in the [scan settings](visual-studio-extension-configuration-environment-variables-and-proxy.md#scan-configuration) for the Visual Studio extension.
-For newly created feature branches, there will be no reported issues. That is an intended state that developers would aim for, as shown in the screen image that follows:
+For newly created feature branches, Snyk reports no issues. That is an intended state that developers aim for, as shown in the screen image that follows:
Successful state, no net new issiues found
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-extension-configuration-environment-variables-and-proxy.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-extension-configuration-environment-variables-and-proxy.md
index 106b2508d613..dd9822f906fd 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-extension-configuration-environment-variables-and-proxy.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-extension-configuration-environment-variables-and-proxy.md
@@ -6,7 +6,7 @@ After the plugin is installed, you can set the following configurations for the
* **Authentication method**: Specify whether to authenticate with OAuth2 or with an API token. `OAuth2` is the default.
* **Custom endpoint**: Specify the Snyk API endpoint for a custom multi-tenant or single-tenant setup. If you are using `https://api.snyk.io`, no configuration is required. For details, see the list of [IDE URLs](https://app.gitbook.com/s/ELvljsaLKPkSpffOkmsQ/regional-hosting-and-data-residency#ides-urls).\
- Multi-tenant users who do not belong to the `SNYK-US-01` region will be automatically redirected to the correct domain for the email with which the user authenticated. The redirect will not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
+ Snyk automatically redirects multi-tenant users who do not belong to the `SNYK-US-01` region to the correct domain for the email with which the user authenticated. The redirect does not occur for cases where the users are expected to use a custom URL, such as companies with single-tenant setups.
* **Ignore unknown CA**: Ignore unknown certificate authorities.
* **Organization**: Specify the `ORG_ID` to run Snyk commands tied to a specific Organization. Snyk recommends using the `ORG_ID`. If you specify the `ORG_NAME`, that is, the Organization slug name, the value must match the URL slug as displayed in the URL of your Organization in the Snyk Web UI: `https://app.snyk.io/org/[orgslugname]`.\
Organization selection follows this order:
@@ -27,19 +27,19 @@ After the plugin is installed, you can set the following configurations for the
**Scanning mode**: The auto option activates automatic scans when saving files and when opening a Project. This works with Snyk Code and Snyk IaC.
-**Snyk Window Recommendation**: The Snyk window should be docked either to the bottom or to the side of the IDE, to enable smoother navigation. It should not be used in full-screen mode.
+**Snyk Window Recommendation**: Dock the Snyk window either to the bottom or to the side of the IDE to enable smoother navigation. Do not use it in full-screen mode.
## Experimental
-This section contains experimental features that may change at any time.
+This section contains experimental features that can change at any time.
These settings are not part of the stable functionality and are not officially supported.
## CLI settings
-You may opt to either use a CLI instance downloaded and managed by the extension or to use your own installation of the CLI.
+You can opt to either use a CLI instance downloaded and managed by the extension or to use your own installation of the CLI.
-* **Base URL to download the CLI**: The URL that the extension will use to download the CLI.
+* **Base URL to download the CLI**: The URL that the extension uses to download the CLI.
* **CLI path**: Allow changing the file path to the CLI (optional field).
* **Update and install Snyk dependencies automatically**: Specify whether or not the extension should download and use its own CLI instance. If this is disabled, you must provide a valid path to your own CLI instance.
* **CLI release channel**: For CLI instances managed by the extension, choose whether to use the stable, rc (release candidate), or preview versions of the CLI. For details on the CLI release channels, see [Releases and channels for the Snyk CLI](../../snyk-cli/releases-and-channels-for-the-snyk-cli.md).
@@ -56,7 +56,7 @@ Settings on this page are scoped to the active solution
* **Additional parameters**: Passed to `snyk test` [CLI options](../../snyk-cli/commands/test.md) for **Snyk Open Source** scanning.\
For example, to enable unmanaged [C/C++](https://app.gitbook.com/s/L7HyJj9FsK1W4pNt8Gzl/supported-languages/supported-languages-list/c-c++) scanning to find vulnerabilities in open-source packages, use the CLI option `--unmanaged`. Note that `--unmanaged` works only for unmanaged C/C++ scanning.
-* **Auto-select Organization**: When enabled, Snyk will automatically select the most appropriate Organization for your Project using context found in your repository and your authentication. If an Organization is configured manually, this feature is overridden. If an appropriate Organization cannot be identified automatically, the preferred Organization defined in your [web account settings](https://app.snyk.io/account) is used as a fallback.
+* **Auto-select Organization**: When enabled, Snyk automatically selects the most appropriate Organization for your Project using context found in your repository and your authentication. If an Organization is configured manually, this feature is overridden. If an appropriate Organization cannot be identified automatically, the preferred Organization defined in your [web account settings](https://app.snyk.io/account) is used as a fallback.
* **Organization**: Specify the Organization (ID or name) for Snyk to run scans against for this specific IDE project. Retrieve the Organization ID from the Organization settings in the Snyk Web UI: `https://app.snyk.io/org/[ORG_NAME]/manage/settings` and copy the ID from the Organization ID section. If the Organization is provided manually, automatic Organization selection is overridden. If the Organization value is blank or invalid, the value from the global Organization field is used.
VS Extension Solution settings
diff --git a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-workspace-trust.md b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-workspace-trust.md
index cc0969684485..c6753c7190ed 100644
--- a/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-workspace-trust.md
+++ b/developer-tools/snyk-ide-plugins-and-extensions/visual-studio-extension/visual-studio-workspace-trust.md
@@ -4,6 +4,6 @@ As part of examining the codebase for vulnerabilities, Snyk may automatically ex
To safeguard against using the extension on untrusted folders, the Snyk extension asks for folder trust before allowing you to run any scans against your code. When in doubt, do not proceed with a scan.
-After a single folder trust is granted, Snyk will not ask for trust on the opened folder and its subfolders again. To revoke an existing folder trust, manually edit the `trustedFolders` JSON element in the `settings.json` file located in the following path:
+After a single folder trust is granted, Snyk does not ask for trust on the opened folder and its subfolders again. To revoke an existing folder trust, manually edit the `trustedFolders` JSON element in the `settings.json` file located in the following path:
`%LocalAppData%\Microsoft\VisualStudio\\Extensions\Snyk\Snyk Security\`