Learn more about new features and Snyk product announcements.

See Snyk and GitHub in action at GitHub Universe

At Snyk, we are committed to building security tools that help developers shift security left to embrace security and quality as early, easily, and efficiently as possible.  With the recent beta release of GitHub Actions, we decided to look at how we could help GitHub users adopt better security controls for DevOps and CI/CD workflows. […]

November 13, 2019

Keep your dependencies up-to-date—enable auto upgrades with Snyk

We are excited to announce the release of a new way to take action on the deep insights Snyk offers regarding security and project health—auto upgrades. Where Snyk’s automated fix pull requests (PRs) apply targeted vulnerability fixes to make the smallest possible change, auto upgrades works to keep dependencies up to date, to help ensure […]

November 6, 2019

Shifting compliance left: Helping legal teams and developers cooperate around licensing issues

We are excited to share that we now support customized license instructions, helping the teams in your organization collaborate better together on licensing compliance: legal teams can better equip developers to shift compliance left by customizing license policies with clear instructions, and developers can then more easily integrate license analysis as part of their routine workflow. 

October 2, 2019

Securing Artifactory using Snyk

We are excited to share that starting today, you can make sure that vulnerable artifacts will not be used in your organization by using Snyk’s Artifactory plugin! Snyk as your Artifactory gatekeeper Snyk’s Artifactory plugin allows your team to define the desired security level and enforce it across the organization. The plugin prevents the team […]

August 19, 2019

Automating open source security scanning with Snyk and CircleCI

At Snyk, we are committed to building developer-friendly security tools that seek to meet developers where they are already working. This includes broad language support and integration with tools and services that developers already use and love. In that spirit, we are excited to announce that Snyk has partnered with CircleCI to help you use […]

August 16, 2019

Securing Go modules made easy (and accurately!)

We are excited to share that starting today, developers can test and monitor their Go projects, which use modules, for open source vulnerabilities and get precise and accurate package-level alerts. We are committed to helping developers secure their open source code, and we work hard to expand our ecosystem and to support additional languages and […]

August 7, 2019

Best practices for rolling out Snyk

The first question many customers ask us after purchasing Snyk is—now how do we roll out the product throughout the company? Whether it’s a security expert who wants to get dev teams involved, and shift security testing left, or the VP of Engineering who’s trying to decide where best to integrate Snyk in the pipeline, […]

August 6, 2019

Announcing new container registry integrations

Snyk is excited to share that we’ve recently added new integrations with your container registries, including Amazon Elastic, Google and Microsoft Azure container registries (ECR, GCR, ACR). And, more are on the way—we’ll soon offer additional ones, including Artifactory, Quay and Nexus. With these new integrations, you’ll be able to scan your container images directly […]

August 5, 2019

Fix open source vulnerabilities directly from your Eclipse IDE

We are excited to share that developers can now test and monitor their projects for open source vulnerabilities, natively from within their Eclipse IDE (integrated development environment) instance. As a rule, software developers mainly work from their favorite IDE, and the IDE they prefer is usually one that integrates well with their existing workflow. At […]

July 25, 2019

What’s new in Snyk?

May 21st – June 9th, 2019 Here’s the first installment of our bi-weekly updates on what’s new in Snyk. What’s new? Container security We launched our integration with Docker Hub earlier this year; now we’ve embarked on adding more and more features and improvements to help manage your container security: When importing container projects, you […]

June 10, 2019

Dependency Health—assessing package risk with Snyk

Snyk’s goal is to help you use open source in a secure way. Vulnerabilities are one indicator that a dependency is unhealthy, but there are other risk factors at play as well. For that reason, we have a whole team working on making Snyk the go-to destination for information about your dependencies – from Security to License information, and now to Health.

May 16, 2019