{"id":15761956,"url":"https://github.com/garethr/snykit","last_synced_at":"2025-04-15T04:22:30.141Z","repository":{"id":37830122,"uuid":"242127003","full_name":"garethr/snykit","owner":"garethr","description":"A simple vulnerable Ruby application deployed to Kubernetes, used for demonstration purposes.","archived":false,"fork":false,"pushed_at":"2024-11-22T05:01:55.000Z","size":266,"stargazers_count":1,"open_issues_count":30,"forks_count":12,"subscribers_count":3,"default_branch":"master","last_synced_at":"2025-04-13T02:13:38.828Z","etag":null,"topics":["kapp","kbld","snyk","ytt"],"latest_commit_sha":null,"homepage":"","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/garethr.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-02-21T11:48:06.000Z","updated_at":"2021-11-23T19:50:52.000Z","dependencies_parsed_at":"2024-01-09T15:58:04.159Z","dependency_job_id":"0acb47a1-bb95-4a23-a13a-3328f02a6249","html_url":"https://github.com/garethr/snykit","commit_stats":{"total_commits":130,"total_committers":2,"mean_commits":65.0,"dds":0.3153846153846154,"last_synced_commit":"33059cfec7fbdba8e47495022d742cd8d4db0ba2"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/garethr%2Fsnykit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/garethr%2Fsnykit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/garethr%2Fsnykit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/garethr%2Fsnykit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/garethr","download_url":"https://codeload.github.com/garethr/snykit/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":249004522,"owners_count":21196886,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["kapp","kbld","snyk","ytt"],"created_at":"2024-10-04T11:05:30.554Z","updated_at":"2025-04-15T04:22:30.121Z","avatar_url":"https://github.com/garethr.png","language":"Ruby","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Snykit\n\nA simple vulnerable Ruby application deployed to Kubernetes, used for demonstration purposes.\n\n![Ruby](https://github.com/garethr/snykit/workflows/Ruby/badge.svg) ![Docker Hub](https://github.com/garethr/snykit/workflows/Docker%20Hub/badge.svg) ![Template](https://github.com/garethr/snykit/workflows/Template/badge.svg)\n\nThis repository demonstrates using the [k14s](https://k14s.io/) toolchain for Kubernetes. Specifically using [YTT](https://get-ytt.io/) for templating the configuration, [kbld](https://get-kbld.io/) to build the image and store the SHA in the Kubernetes manifest and [kapp](https://get-kapp.io/) to deploy to Kubernetes.\n\nGitHub Actions is used to automatically build the images and generate a Kubernetes configuration file populated with the image SHA. You can deploy the latest version of the application using `kubectl` like so:\n\n```console\nkubectl apply -f https://raw.githubusercontent.com/garethr/snykit/master/dist/snykit.yaml\n```\n\nAlternatively you can use `kapp` here as well:\n\n```console\nkapp deploy -a snykit -f https://raw.githubusercontent.com/garethr/snykit/master/dist/snykit.yaml\n```\n\n## Vulnerable?\n\nThe application, and the associated image, have a few known vulnerabilities. We can use [Snyk](https://snyk.io/) to detect them. Snyk can be used via the CLI, or integrated with your CI system (including with [Actions](https://github.com/garethr/snykit/actions)) but in this case we've imported directly from GitHub, Docker Hub and the running application in Kubernetes.\n\n![Showing vulnerabilities in Snyk](assets/snyk.png)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgarethr%2Fsnykit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgarethr%2Fsnykit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgarethr%2Fsnykit/lists"}