We use cookies to ensure you get the best experience on our website.Read moreRead moreGot it

close
  • Products
    • Products
      • Snyk Open Source
        Avoid vulnerable dependencies
      • Snyk Code
        Secure your code as it’s written
      • Snyk Container
        Keep your base images secure
      • Snyk Infrastructure as Code
        Fix misconfigurations in the cloud
    • Platform
      • What is Snyk?
        See Snyk’s developer-first security platform in action
      • Developer Security Platform
        Secure all the components of the modern cloud native application in a single platform
      • Security Intelligence
        Access our comprehensive vulnerability data to help your own security systems
      • License Compliance Management
        Manage open source license usage in your projects
    • Self-paced security education with Snyk Learn
  • Resources
    • Using Snyk
      • Documentation
      • Vulnerability intelligence
      • Product training
      • Customer success
      • Support portal & FAQ’s
    • learn & connect
      • Blog
      • Community
      • Events & webinars
      • DevSecOps hub
      • Developer & security resources
    • Self-paced security education with Snyk Learn
  • Company
    • About Snyk
    • Customers
    • Partners
    • Newsroom
    • Snyk Impact
    • Contact us
    • Jobs at Snyk We are hiring
  • Pricing
Log inBook a demoSign up
All articles
  • Application Security
  • Cloud Native Security
  • DevSecOps
  • Engineering
  • Partners
  • Snyk Team
  • Show more
    • Vulnerabilities
    • Product
    • Ecosystems
Snyk Team

Accelerating our developer-first vision with DeepCode

Peter McKay CEO
Peter McKaySeptember 23, 2020

As you may have read in the news, today Snyk announced an agreement to acquire DeepCode!  On behalf of the Snyk team, I wanted to share with you why we are excited to integrate DeepCode’s technology to the Snyk Cloud Native Application Security platform, and what it will mean for our customers and users.

Who is DeepCode?

First, let me tell you a little about this company and their amazing technology.  DeepCode is an ETH Zurich spin-off founded by leading researchers in machine learning and programming languages.  The company has been focused on applying AI to assist developers with application quality and security in real-time – as they code.  In particular, they developed two breakthrough innovations:

  • Very sophisticated interpretable machine learning semantic code analysis. The technology scans code 10-50x faster than alternatives, which enables real-time workflows within the development process.  It also dramatically reduces both false negatives and false positives using a custom machine learning platform that is able to quickly learn from huge volumes of code.
  • An exceptional developer UX unlocked via a custom, next-generation Datalog solver that, for the first time, allows for high precision semantic code analysis in real-time.  This technology enables code scanning at the IDE and git level so that developers can seamlessly integrate scanning into their development process in real-time rather than adding interruptive steps. 

How will this accelerate our vision for developer-first cloud native application security?

Snyk’s approach from day one has been to empower developers as the first step in application security, enabling the speed and scale required by technology-driven companies.  Security and operations teams are given the visibility and control to support developers and govern the process during development.  Snyk is already the most developer-friendly application security solution, used by more than 1.5 million developers worldwide to build software securely.  

Key to this vision is continuously integrating security into the development process, rather than add it as an additional step. DeepCode’s AI engine will help Snyk both increase speed and ensure a new level of accuracy in finding and fixing vulnerabilities, while constantly learning from the Snyk vulnerability database to become smarter.

This will enhance our solution in two ways.  It will enable an even faster integration for developers, testing for issues while they develop rather than as an additional step. And it will further increase the accuracy of our results, almost eliminating the need to waste time chasing down false positives.  Snyk was already the best in the industry in these two aspects, and this will set us even further apart.

What will this mean for our customers and users?

DeepCode’s industry-first technology will advance Snyk’s comprehensive security platform, which today supports open source security, container security, and infrastructure as code security, with integrated machine learning-based intelligence to more quickly identify vulnerabilities and ensure developers have a superior level of accuracy.  Additionally, we now can apply those capabilities to the proprietary code written by developers, extending the Snyk platform’s coverage for securing cloud native applications.

We’ll have a lot more to say about our plan to integrate DeepCode’s technology, and how our customers will experience that, at our upcoming free, virtual Snykcon conference on October 21-22, 2020.  Click the link below to reserve your spot, and we look forward to seeing you there!

Reserve my spot

Log4Shell resource center

We’ve created an extensive library of Log4Shell resources to help you understand, find and fix this Log4j vulnerability.

Browse Resources
Footer Wave Top
Patch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo SegmentPatch Logo Segment
Develop Fast.
Stay Secure.
Snyk|Open Source Security Platform
Sign up for freeBook a demo

Product

  • Developers & DevOps
  • Vulnerability database
  • Pricing
  • Test with GitHub
  • API status
  • IDE plugins
  • What is Snyk?

Resources

  • Snyk Learn
  • Blog
  • Security fundamentals
  • Resources for security leaders
  • Documentation
  • Snyk API
  • Disclosed vulnerabilities
  • Open Source Advisor
  • FAQs
  • Website scanner
  • Japanese site
  • Audit services
  • Web stories

Company

  • About
  • Snyk Impact
  • Customers
  • Jobs at Snyk
  • Snyk for government
  • Legal terms
  • Privacy
  • Press kit
  • Events
  • Security and trust
  • Do not sell my personal information

Connect

  • Book a demo
  • Contact us
  • Support
  • Report a new vuln

Security

  • JavaScript Security
  • Container Security
  • Kubernetes Security
  • Application Security
  • Open Source Security
  • Cloud Security
  • Secure SDLC
  • Cloud Native Security
  • Secure coding
  • Python Code Examples
  • JavaScript Code Examples
Snyk|Open Source Security Platform

Snyk is a developer security platform. Integrating directly into development tools, workflows, and automation pipelines, Snyk makes it easy for teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and infrastructure as code. Supported by industry-leading application and security intelligence, Snyk puts security expertise in any developer's toolkit.

Resources

  • Snyk Learn
  • Blog
  • Security fundamentals
  • Resources for security leaders
  • Documentation
  • Snyk API
  • Disclosed vulnerabilities
  • Open Source Advisor
  • FAQs
  • Website scanner
  • Japanese site
  • Audit services
  • Web stories

Track our development

© 2022 Snyk Limited
Registered in England and Wales
Company number: 09677925
Registered address: Highlands House, Basingstoke Road, Spencers Wood, Reading, Berkshire, RG7 1NT.
Footer Wave Bottom