Continuously secure all apps with unlimited Snyk projects

Guy Podjarny's avatar Guy Podjarny

To do security well, you have to do it continuously. Finding and fixing vulnerable libraries once is great, but without monitoring those dependencies and testing code changes, you’ll quickly slip back to being insecure.

Snyk’s mission isn’t to get you using our product, but rather to help you be truly—and continuously—secure. To that end, I’m excited to announce we’re overhauling our pricing to make Snyk projects, and the ongoing protection they offer, free!

Protecting all of your repos is just a few clicks away, try it out!

Instead of limiting projects, the new pricing model revolves around how often you run a test to find out if an application is vulnerable. Tests will run as part of your GitHub workflow or when you invoke them via the CLI (e.g. within your CI), helping you keep new vulnerable dependencies out. We will also test your projects on a daily or weekly basis for new vulnerabilities, informing you of newly disclosed security flaws that affect your dependencies.

You’ll get 100 such tests in the free tier each month, to use as you please. If you go over that limit, we’ll let you know we’ve paused the tests, and you can choose if you’d like to test less frequently or upgrade to a premium plan. Your quota will reset every month, making sure you get at least that frequency of security testing done. As before, Snyk remains free for Open Source projects, and always will be.

With this change we believe there is truly no reason not to protect all of your applications and do so continuously. We’ve also further simplified our setup process, meaning you’re just a few clicks away from securing all of your Node.js, Front-End JavaScript and Ruby apps (and soon Java).

In addition to changing the pricing model, we also upgraded our UI and the onboarding workflow to make it super easy to protect more repos, scale better to the thousands of repos some of our users have, as well as many improvements to how you navigate the site and the different screens.

So what are you waiting for? Go on and add some Snyk projects! :)

Maven support is here!

April 18, 2017

Last November, we announced that in addition to Node.js support, we were adding support for Ruby. And now it's time to expand yet again. Today we're excited to announce Snyk's support for Java and other Maven supporting languages!

77% of sites use at least one vulnerable JavaScript library

March 29, 2017

The other week a paper was released that reported that about 37% of sites included at least one JavaScript library with a known vulnerability. We ran our own test and discovered that the reality is much worse—76.6% of sites were using at least one vulnerable library.

Subscribe to The Secure Developer Podcast

A podcast about security for developers, covering tools and best practices.

Find out more

Interested in web security?

Subscribe to our newsletter:

Get realtime updates and fixes for JavaScript, Ruby and Java vulnerabilities that affect your applications