SnykCon Day Two wrap-up: Integrations and partnerships galore & session highlights

The second and final day of SnykCon 2020 is in the books, and we hope you enjoyed it as much as we did. This post will share some of the product announcements—including a few big partnerships and integrations—plus takeaways from a few of the provocative, in-depth sessions we hosted. We also share session videos in […]

October 22, 2020

Vulnerability remediation process: reducing your vulnerability backlog with Snyk’s automatic backlog PRs

We’re happy to announce Backlog Management—a new enhancement to Snyk’s automated vulnerability remediation capabilities that enables development and security teams to reduce their vulnerability backlog at a manageable pace. Most projects have over 20 vulnerabilities when first scanned by Snyk. It’s no wonder vulnerabilities have a tendency to pile up into what becomes an overwhelming […]

October 22, 2020

SnykCon Day One wrap-up: Snyk Code, carbon neutrality & session highlights

Day One of SnykCon 2020 is in the books. In this post, we’re bringing you a recap of all the news fit to print, plus a peek into some of the eye-opening sessions we heard today. Have a read and join us for Day Two tomorrow. Snyk Code, developer-first SAST, extends Snyk Platform Today, we […]

October 21, 2020

Announcing developer-first SAST with Snyk Code

Snyk announced our forthcoming product, Snyk Code, our new developer-first SAST offering, expanding our cloud native application security platform.

October 21, 2020

Happiness in the year of COVID-19

This week, Snyk was recognized by Comparably’s employer awards in 2 categories: ‘Happiest Employees’ and ‘Best Compensation’.  The compensation piece is easy to understand. We consciously benchmark to market and pay competitively. In addition, given Snyk’s tremendous growth, the last couple of years have allowed many employees to earn significant wealth from their share options.  […]

October 15, 2020

SourMint: iOS remote code execution, Android findings, and community response

As part of this ongoing effort, Snyk has leveraged new information to conduct additional research into the Mintegral SDK. As a result of this research, additional findings have been uncovered.

October 15, 2020

Integrated Docker Security Scanning by Snyk in Docker Hub

In our continuing quest to help developers create more secure containers, Snyk and Docker are pleased and excited to announce the release of our next phase of integration: Docker security scanning powered by Snyk directly in Docker Hub! With this capability, teams can now securely collaborate in Docker Hub, with the full vulnerability details available […]

October 9, 2020

JHipster security scanning with Snyk

JHipster is a well known open source platform to quickly generate, develop, and deploy modern web and microservice applications. Using the JHipster CLI, you can pick and choose the frameworks and platforms you want to use for your applications. Match different frameworks easily, for example, use Java with Spring Boot for your backend with a […]

October 8, 2020

Snyk and Secure Code Warrior: adding more context to GitHub code scanning alerts

Yesterday we announced full support in Snyk Container and Snyk Infrastructure as Code for GitHub code scanning. Now you can easily show vulnerability information from Snyk natively in GitHub’s Security tab.  While Snyk provides lots of details for each of the vulnerabilities we discover, and references to published advisories and associated CWEs, not everyone is […]

October 8, 2020

Why your team should attend SnykCon 2020

SnykCon is less than 2 weeks away! In 2020, meeting and engaging with others is more important than ever before. Our goal with SnykCon was to create a conference to bring the DevSecOps community together for 2 days of sharing, learning, and fun. Need a few great reasons to send your team? Read on! 1. […]

October 7, 2020

Showing Snyk security information in GitHub code scanning

Lots of Snyk users use GitHub for hosting their source code. Generally, that means looking in one place (GitHub) for source code, and another (Snyk) for information about vulnerabilities. Snyk has always looked to push security information to where developers are, for instance with local tools (like our CLI and IDE plugins) and with our […]

October 7, 2020