Snyk blog

Sign up for the Snyk Monthly Newsletter

All articles
https://snyk.io/wp-content/uploads/blog-post-default.png
Vulnerabilities

What’s a known vulnerability?

A vulnerability is a vulnerability, whether known or not. The key difference between the two is the likelihood of an ...

Guy Podjarny
February 6, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
DevSecOps

We'll know DevSecOps has won once it's dead

You can't go to a security event nowadays and not hear at least a few speakers say the phrase "DevSecOps". ...

Tim Kadlec
Tim Kadlec
January 31, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
Application Security

Where do security patches come from?

The best solution for known vulnerabilities is to upgrade your software. But sometimes there's not a security update immediately available. ...

Danny Grander
Danny Grander
January 25, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
Open Source

What do open source maintainers know about security?

Open source maintainers give up their own time to create great pieces of free software, which we then use to ...

Guy Podjarny
January 16, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
DevSecOps, Ecosystems

npm Shrinkwrap Reloaded: Locking npm Deps with Package-Lock and Yarn.Lock

Locking or “pinning” dependencies is a widespread best practice in Ruby, Python, and other ecosystems. In Node.js locking was much ...

Assaf Hefetz
Assaf Hefetz
January 10, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
DevSecOps

Don't build security tools, build developer tools instead

Stop building security tools that think about dev, and start building dev tools that handle security.

Guy Podjarny
January 9, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
Product

Using the Snyk API to get your vulnerabilities

The Snyk API gives you access to all the issues associated with a given project. In this post, you'll learn ...

Josh Emerson
Josh Emerson
January 3, 2018
https://snyk.io/wp-content/uploads/blog-post-default.png
Product, Ecosystems

Announcing Snyk for .NET, Go and PHP

Snyk has always been committed to making it easy to use open-source code without compromising security. Today, we're taking another ...

Aner Mazur
Aner Mazur
December 21, 2017
https://snyk.io/wp-content/uploads/blog-post-default.png
Application Security

Staying Secure on Heroku with the Snyk Add-On

The Snyk Heroku Addon is now out of beta, providing deep integration with your Heroku workflow. In this post, we'll ...

Tim Kadlec
Tim Kadlec
December 12, 2017
Next