Snyk Service Broker (Beta)

WARNING: The Snyk Service Broker for PCF tile is currently in beta and is intended for evaluation and test purposes only. Do not use this product in a PCF production environment.

This documentation describes the Snyk Service Broker for Pivotal Cloud Foundry (PCF). The Snyk Service Broker for PCF enables developers to scan their droplets for known vulnerabilities in open source components. In addition, the Snyk Service Broker for PCF allows you to continuously monitor droplets for new vulnerabilities as well as preventing the deployment of vulnerable droplets.

Overview

The Snyk Service Broker for PCF registers a service broker with PCF and exposes its service plans on the Marketplace. Developers can then create service plan instances using Apps Manager or the Cloud Foundry Command Line Interface (cf CLI) and bind them to their apps.

Creating a Snyk Service Broker for PCF service instance and binding it to an app will trigger Snyk to run scans on your app dependencies as part of the buildpack. Using environment variables, you can decide whether to continuously monitor your app, reject a vulnerable droplet, or patch the vulnerabilities inside your app.

Key Features

Snyk Service Broker for PCF includes the following key features:

  • Scan your app dependencies for known vulnerabilities
  • Continuously monitor your app dependencies for new vulnerabilities
  • Reject a vulnerable droplet from being deployed
  • Patch you app dependencies during buildpack phase

Product Snapshot

Note: As of PCF v2.0, Elastic Runtime is renamed Pivotal Application Service (PAS).

The following table provides version and version-support information about Snyk Service Broker for PCF.

Element Details
Tile version v0.0.2
Release date March 13, 2018
Software component versions Snyk service broker v0.1.0
Compatible Ops Manager version(s) v1.11.x, v1.12.x, v2.0.x, and v2.1
Compatible Pivotal Application Service version(s) v1.11.x, v1.12.x, v2.0.x, and v2.1
IaaS support AWS, Azure, GCP, OpenStack, and vSphere
IPsec support No

Requirements

Snyk Service Broker has the following requirements:

  • A free or paid Snyk account. Sign up at Snyk.io.

Limitations

None

Feedback

If you have a feature request, questions, or information about a bug, please email Pivotal Cloud Foundry Feedback list or send an email to Snyk Support.

License

The Snyk Service Broker for PCF is licensed under the Apache 2 license.

Create a pull request or raise an issue on the source for this page in GitHub