Monitoring open source packages at runtime – now in open beta

Today we’re delighted to share that we’re launching our Open Source Security Runtime Monitoring solution, in beta, to all users, with no limitation on usage! While Snyk invests heavily in making fixing vulnerabilities ridiculously easy by baking it into the development workflow, handling a large backlog of issues can be time-consuming. We’ve spent the past […]

January 30, 2019

Snyk CLI drops support for Node.js 4 (Argon)

On 30th of April, 2018, Node.js 4 was officially marked as End of Life (EOL) and ceased to receive security updates. At Snyk, we have been committed to continued support for Node.js 4 in our CLI tool, but the time has finally come to wave goodbye. Today we are announcing the deprecation of Node.js 4 […]

January 24, 2019

Finding open source vulnerabilities within the Bitbucket workflow

Snyk was happy to implement code insights, a new functionality by Bitbucket, to allow Bitbucket Server users to view detailed results of Snyk’s vulnerability scan, all within Bitbucket itself.

January 22, 2019

Snyk – Your Next Career Move!

Last week, Business Insider posted their annual list of top promising enterprise startups that are poised for great success in 2019, and we are greatful to have been included. While the article focusses on valuation and investment, we’d like to take this opportunity to tell you a bit more about other aspects of Snyk in […]

January 4, 2019

Snyk’s vulnerability database is no longer powering JFrog’s Xray

Starting from January 2019, Snyk’s vulnerability database will no longer be integrated into the Xray platform. Snyk vulnerabilities observed through scans done prior to January 2019 or databases not updated since then will remain visible in Xray dashboard. New scans following January 2019 will not include any Snyk vulnerabilities.

January 3, 2019

2018 Year in Review

First and foremost we would like to wish you a Happy New Year and sincerely thank you for championing open source security and helping us make the world a little safer! A Security Retrospective 2018 has seen its significant share of severe security incidents across the different ecosystems. Snyk’s security research team publicly disclosed a […]

December 31, 2018

Critical Arbitrary Code Execution Vulnerability Found in Kubernetes

On December 3rd 2018, a severe vulnerability was disclosed to the kubernetes community, which marks the first critical CVE found on the kubernetes project (based on a CVSS v3 score). Patched versions were released and made available for end users and cloud providers. Make sure you upgrade to a fixed version, if you haven’t done […]

December 20, 2018

The Secret To Building A Truly Successful Freemium Product and more, with Guy Podjarny

Snyk CEO, Guy Podjarny, spent some time recently talking with Jason Lemkin and Harry Stebbings on the SaaStr podcast to talk about a vast number of topics including some of the core decisions that were made in Snyk’s recent history from being a small startup a few years ago to the fast-growing distributed company it […]

December 19, 2018

Report Shows the Equifax Breach was “Entirely Preventable”

It’s always great to see our hard earned tax dollars put to good use. The US government recently released a report showing the spectacular breach of Equifax last year was entirely preventable if Equifax only made some reasonable efforts to protect themselves – and our data. This post outlines some of the report’s most significant […]

December 18, 2018

Snyk highlighted on the ThoughtWorks Technology Radar

Snyk has recently been included in the ThoughtWorks Technology Radar, alongside some of our friends, and we think that deserves a deep dive, with examples of how we use some of these tools ourselves as part of our stack. What is the ThoughtWorks Technology Radar? ThoughtWorks is a Chicago-based software design, delivery, and consulting firm. […]

December 13, 2018

Codefresh + Snyk = Ship Fast and Securely

Modern software development is about writing code. Not building, not shipping, but developing — We code, we merge, it builds, it ships. It’s important to test on both sides of the repo frontier, between the code and the automated part. The goal is to test before we merge so the changes go through the pipeline […]

December 11, 2018