The world since coronavirus: adapting quickly to a fully remote environment

As a globally distributed company, we have the majority of our employees based in our hub offices (Tel Aviv, London, Boston, Ottawa), and about a quarter of our employee base entirely remote. As a result — in terms of culture, infrastructure, and processes — we are well set up for remote work.  Adaptation is everything  […]

March 16, 2020

test

March 14, 2020

To our Community from the Snyk Team

As the situation with COVID-19 continues to evolve on a daily basis, the Snyk team wants to let you know that we are here to support you and your teams through this difficult time.  As a distributed global company, we are all accustomed to working remotely and being available to our customers across time zones. […]

March 13, 2020

How cloud transforms IT security into AppSec

Cloud computing is undoubtedly a seismic shift to the technology world, unlocking efficiencies and innovation like never before. However, it also drove another key change, which isn’t often discussed – cloud has made infrastructure a part of the application.  This shift carries significant ramifications for how we practice security. On the whole, security tools and […]

March 12, 2020

How to Detect and Remediate Kubernetes Vulnerability CVE-2019-11249

Over the past few years, Kubernetes has exploded into the tech world, becoming the most popular cloud container orchestration system. Kubernetes remains a powerful, useful open source system for developers, but like any tool needs to be used carefully and you should take steps to secure your clusters. Today we want to talk about two […]

March 11, 2020

Fastify Node.js framework improves JSON security thanks to a security report

On April 9th Francesco Soncina –also known as phra on the HackerOne security bug bounty platform– reported a Server-side JavaScript code injection vulnerability to the Node.js Security working group. This vulnerability, initially identified Fastify, a Node.js web application framework,  as the affected target of this security issue. Matteo Collina, one of the maintainers of the […]

March 10, 2020

A call to growing tech companies — how to move the needle on gender equality together

It can be easy, especially within the warm and inclusive culture we have cultivated at Snyk, to be lulled into complacency and neglect how relevant the fight for gender equality really is. International Women’s Day marks an opportunity to step back and think about everything we’ve accomplished (it wasn’t that long ago that women didn’t […]

March 9, 2020

Popular Python library, urllib3, subject to a denial of service vulnerability

Urllib3, a powerful and popular Python http client, is subject to a newly discovered denial of service vulnerability. Urllib3 is used throughout the Python ecosystem–with more than 1,200 packages listing it as a dependency including popular packages like requests, selenium, kubernetes, and more. If you have a Python project, there is a high likelihood that […]

March 8, 2020

Snyk partners with the makers of Greenkeeper to help developers proactively maintain dependency health 

We’re pleased to announce the graduation of Automatic Dependency Upgrades, a Snyk Open Source capability that helps developers proactively reduce security vulnerabilities and maintain dependency health when using open source software. Automatic Dependency Upgrades is the result of an exciting new partnership between Snyk and Neighbourhoodie Software, who are the makers of Greenkeeper and developer […]

March 5, 2020

Is your website vulnerable? Let’s fix it!

If you run a website, whether this is a full-fledged SaaS web application or a small blog — built by Gatsby, WordPress, or an indie GitHub Pages setup — one of the key concerns you want to mitigate is security vulnerabilities. Security vulnerabilities in third-party JavaScript libraries are probably one of the topmost security concerns […]

March 4, 2020

Snyk named to CRN’s Security 100 list

We’re excited to share that CRN has included Snyk to its annual Security 100 list. Building on the growing momentum of 2019 and seeing continued growth into the new year, this award is great recognition of the innovative and unique approach we are taking to application security.  With this list, CRN wants to help solution providers “decide what […]

March 3, 2020