Snyk finds PyPi malware that steals Discord and Roblox credential and payment info
Learn about the newly discovered PyPi malware that attempts to steal credential and payment information from Discord and Roblox users.
Editor's Picks
Subscribe to our newsletter for all the latest news and resources.
Command injection vulnerability in Snyk CLI released prior to September 1, 2022 (older than v1.996.0)
As a Snyk user, we want to let you know about a medium severity vulnerability (CVSSv3 6.4) in our CLI that you should be aware of: CVE-2022-40764.
Why developers hold the key to cloud security
A look at the advantages of empowering developers with the right tools and processes for mastering cloud security.
Vulnerability insights
Stay up to date on vulnerabilities that could impact you and your organization.
Choosing the best Node.js Docker image
Snyk's Liran Tal discusses strategies for choosing the best node.js Docker image.
How Snyk can help secure supply chains per Executive Order M-21-30
On September 14, the White House released Executive Order M-21-30, emphasizing and reminding us that there are NIST guidelines for securing any software being sold to the US Government. In this post, we'll recap the EO, it's impact, and how Snyk can help your organization comply.
Introducing the new Snyk UI
We're excited to announce that a new Snyk UI is coming soon! Starting October 12th, 2022 we’ll be rolling out some exciting new user interface changes for the Snyk application. Read on for a sneak peek.
Snyk IaC for Terraform Enterprise: Expanding Snyk compatibility with HashiCorp Terraform
Today, we’re excited to announce the expansion of our partnership with HashiCorp, Snyk IaC for Terraform Enterprise. With validation from HashiCorp, Snyk continues to deliver contextual security and compliance configuration guidance instantly while writing code in Terraform.
Snyk & 01Founders partner to diversify tech
On September 15, Snyk kick off our partnership with 01Founders by hosting 30 learners at our London office. The event featured a panel discussion, capture the flag challenge, and networking opportunities with dozens of Snykers. Read on for a recap of the day!
How to install Ruby in a macOS for local development
In this tutorial, you’ll learn how to properly install Ruby on Mac, and properly install Ruby on Mac How to setup a local development environment that doesn’t conflict with brew or an existing macOS Ruby version.
Looking back at Black Hat USA 2022
For the past few days, I’ve been getting a lot of messages asking about my experience at this year’s Black Hat USA. So in this post, I’ll be recapping the conference to give you an inside look at what was presented and provide some helpful perspective.
Explaining the csurf vulnerability: CSRF attacks on all versions
An analysis of how and why all versions of csurf npm package are vulnerable to CSRF token bypass.
Meet (and join) our newest Snyk Ambassadors – Fall 2022 edition!
It is our great pleasure to officially welcome on board our latest Snyk Ambassadors! As you may already know, Snyk ambassadors are security champions on a mission to help developers build more secure applications.
