snyk iac <COMMAND> [<OPTIONS>] [<PATH>]
The snyk iac commands find and report security issues in Infrastructure as Code files; detect, track, and alert on infrastructure drift and unmanaged resources; and create a .driftigore file.
For more information see Snyk CLI for Infrastructure as Code
All the snyk iac commands are listed here with the help options:
- iac test;
iac test --help: tests for any known security issue - iac capture;
iac capture --help: generates mapping artifacts by accessing Terraform state configurations - iac describe;
iac describe --help: detects infrastructure drift and unmanaged cloud resources
Example:snyk iac describe --only-unmanaged - iac update-exclude-policy;
iac update-exclude-policy --help: auto-generates.snykexclusions for cloud resources
Example:snyk iac describe --json --all | snyk iac update-exclude-policy