Engineering

Looking for highly technical articles? Our Engineering team is here to provide you with tool and technology-specific content, as well as in-depth technical guides of the Snyk products.

10 git aliases for a faster and productive git workflow

Using git as a code versioning tool is a day-to-day activity for developers, and some of you may be practicing your git workflow through the command line. Preferably with a dark theme too, right? Although a GUI for git might come in handy for an integrated development environment (IDE) such as IntelliJ, or VS Code, […]

December 2, 2020

Turn the senior around: an alternative way to lead engineering teams

As engineering managers, we carry many responsibilities. Two critical responsibilities I have come across  throughout my career are: delivering high-quality features on time. supporting your team members’ professional growth and development. Senior engineers are a key enabler to both responsibilities. They are the main players the team lead can rely on to achieve these goals. […]

November 30, 2020

Kubernetes Operators: automating the release process

Snyk helps our customers to integrate security into their CI/CD pipelines, so we spend a lot of time thinking about automation. When it comes to releasing our own software, we’re always looking to adopt best practices for test and release.  In this blog, I’ll talk about the release process for our Kubernetes Operator, and show […]

November 20, 2020

Container image formats under the hood

Over the last few years, following Docker’s release, containers have become more and more the standard mechanism for software delivery. We see a growing number of container-based solutions and while innovation in the space is obviously welcomed, there is a requirement for establishing certain standards around format and runtime. Because of the rapid growth of […]

November 18, 2020

RPM Package Manager: RPM package security scanning with Snyk

As part of scanning container images, Snyk can detect various pieces of information like the operating system distribution, software package manager, installed applications, and all of the application dependencies. RPM is one of the most common package managers in the Linux ecosystem and is fully supported in Snyk. While there was open source code available […]

November 13, 2020

Gradle dependencies: scanning with new Snyk Gradle plugin

Gradle is one of the major build systems in not only the Java ecosystem but also for Android development. With Gradle, you can manage your dependencies, build, and test your project. Scanning the dependencies for known security vulnerabilities in your project is important. The ideal time to start scanning your dependencies is the very moment […]

October 23, 2020

JHipster security scanning with Snyk

JHipster is a well known open source platform to quickly generate, develop, and deploy modern web and microservice applications. Using the JHipster CLI, you can pick and choose the frameworks and platforms you want to use for your applications. Match different frameworks easily, for example, use Java with Spring Boot for your backend with a […]

October 8, 2020

How to deploy a Vue.js Jamstack application on Netlify with automatic security updates from Snyk

Fancy learning front-end security concepts while also learning how to deploy a static website on Netlify?  Ready to learn how you can automatically detect and fix vulnerable JavaScript dependencies? Jump right in. In this article we’ll use the following: Netlify – a platform to instantly build and deploy your sites to a global network. Snyk.io […]

September 24, 2020

Fixing vulnerabilities in Maven projects

Maven is still the most used build system in the Java ecosystem. According to the JVM report 2020, Maven is the number one build tool in the ecosystem with two-thirds of the share.  Therefore, it is important to now how Maven works. For instance, if you find vulnerabilities in your Maven project using Snyk, how […]

September 14, 2020

Reachable vulnerabilities: how to effectively prioritize open source security

A common problem our clients report is being overwhelmed by vulnerabilities.  For small projects, you might end up depending on dozens, or even hundreds of open source libraries. For large enterprise applications, it might feel like your dependencies include half of the ecosystem. The proliferation of third-party dependencies leads to the proliferation of vulnerabilities associated […]

August 18, 2020

Git, the easy way: changing history using rebase—part II

Welcome back to the second part of how to work with git, the easy way! In the previous article, we discussed the basics of Rebase as well as two common scenarios that all of us might encounter when working with git. You can find the first part here. In this part, we will go over […]

June 17, 2020