CLI - Ignore
Sometimes, Snyk may alert you to a vulnerability that you either has no patches or updates available, or that you do not believe to be currently exploitable in your application. In this case, you may want to tell Snyk to ignore the vulnerability for a certain period of time.
If you're using
snyk wizard (only available on Node.js projects), the wizard will give you the option of ignoring the vulnerability for a period of 30 days. If you're using Ruby or Java, or if you want to specify a different duration, you can use the
snyk ignore command.
snyk ignore --id=IssueID [--expiry=expiry] [--reason='reason for ignoring']
snyk ignore accepts three options:
||The Snyk ID for the issue to ignore. Found by running
Example: For the vulnerability found at https://dev.snyk.io/vuln/npm:tough-cookie:20160722, you would use:
||The expiry date string, according to RFC2822.
||The reason for ignoring the issue.