Introducing Service Accounts – API tokens for your org
One of our most frequent feature requests recently has been for the ability to generate an API token that isn’t tied to a particular user. Our existing support of API tokens tied to users was problematic for some customers who wanted more flexibility with tokens, so we’ve been working hard on building something better.
We’re really excited to be able to now offer our Pro and Enterprise customers the ability to create Service Accounts – a special type of user that has an API token associated with it.
Once you create a Service Account, you’ll be shown a token that applies to your org. These tokens can be used for CI and other automation purposes without using an actual Snyk user’s token. You can create as many Service Accounts as you like for different purposes, and you also have the ability to revoke a token at any time.
To get set up with Service Accounts, have a read of our documentation.
Snyk <3 Jira
June 20, 2018Over the past few months, we’ve been working closely with customers who use Snyk alongside various issue trackers as a way of managing their vulnerability remediation process. Today we have launched this Jira integration for all our Pro and Enterprise plan customers.
Public Disclosure of a Critical Arbitrary File Overwrite Vulnerability: Zip Slip
June 05, 2018The Snyk Security team is today announcing the public disclosure of a critical arbitrary file overwrite vulnerability called Zip Slip. It is a widespread vulnerability which typically results in remote command execution. The vulnerability affects thousands of projects.
Subscribe to The Secure Developer Podcast
A podcast about security for developers, covering tools and best practices.
Interested in web security?
Subscribe to our newsletter: