A sample vulnerable Node application for demonstration purposes.

This project uses Tilt for a nice local development experience. Simply run:

tilt up

The image will be built locally, and deployed using Helm to your configured Kubernetes cluster. Any changes, to the application code or Dockerfile, will trigger a rebuild and redeploy.

The application, and the associated image, have a few known vulnerabilities. We can use Snyk to detect them. In this particular example Snyk is connected directly to the GitHub repository, and we have run snyk monitor to check the container image.