Snyk blog

Mastering Node.js version management and npm registry sources like a pro

In continuation to the 10 npm security best practices guide we published earlier this year, I’d like to further explore ...

Liran Tal

Juan Picado

August 28, 2019

Application Security, Vulnerabilities

Code execution back door found in Ruby's rest-client library

On August 19th, 2019 rest-client, a simple HTTP and REST client for Ruby, reported a new security threat. A maintainer’s ...

Hayley Denbraver

August 21, 2019

Vulnerabilities, Application Security

Jackson Deserialization Vulnerability

On July 29th, 2019 a high severity Deserialization of Untrusted Data vulnerability ( CVE-2019-14379, CVE-2019-14439) affecting all versions of com.fasterxml.jackson.core:jackson-databind ...

Brian Vermeer

August 21, 2019

Application Security, Vulnerabilities

A year-old dormant malicious remote code execution vulnerability discovered in Webmin

On August 17, 2019, the Webmin team announced the release of Webmin 1.930 and Usermin 1.780. These releases address a ...

Hayley Denbraver

August 20, 2019

Product

Securing Artifactory using Snyk

We are excited to share that starting today, you can make sure that vulnerable artifacts will not be used in ...

Or Fattal

August 19, 2019

Product

Automating open source security scanning with Snyk and CircleCI

At Snyk, we are committed to building developer-friendly security tools that seek to meet developers where they are already working. ...

Hayley Denbraver

August 16, 2019

DevSecOps, Ecosystems

10 Eclipse plugins you shouldn’t code without

Developers primarily work from their favorite IDE (integrated development environment). For that reason, good IDE extensions and plugins are becoming ...

Brian Vermeer

August 15, 2019