Snyk Advisor is Reshaping Package Intelligence on Snyk Security Database
2 février 2026
0 minutes de lectureChoosing safe, healthy open source dependencies shouldn’t require jumping between tools or piecing together context from multiple places. Developers and AppSec teams need package health signals exactly where security decisions already happen.
This is why we’re bringing Snyk Advisor data into security.snyk.io.
Since its launch in 2020, Snyk Advisor has helped teams make better decisions about the open source packages they rely on, offering insights into package popularity, maintenance, security, and community health. Over time, it became clear that these signals are most valuable when they’re embedded directly into the broader security workflow – alongside vulnerability data, ecosystem context, and supply chain risk. This change marks the next evolution of Snyk Advisor: bringing package intelligence into a single, trusted platform.
Why we’re bringing Snyk Advisor into security.snyk.io
Snyk Advisor started as a standalone experience, optimized for exploring package health signals. As Snyk’s security data, ecosystems, and workflows grew, keeping package intelligence separate created friction:
Teams had to jump between sites to understand package health and vulnerabilities.
Vulnerability data lived in multiple places rather than a single, consistent source of truth, making it harder to build a complete picture.
The experience no longer reflected how developers and AppSec teams work today–across the entire software supply chain.
Comparing the previous experience with the new experience:
By bringing Snyk Advisor data into security.snyk.io, we’re aligning package intelligence with where security decisions already happen.
What this unlocks for developers and AppSec teams
This migration delivers more value with less friction.
A unified experience
Package health signals now live alongside vulnerability data, version information, and ecosystem insights – all in one place. This means teams can evaluate packages with full context, without stitching together data from multiple sources.
Better workflows
Developers can evaluate packages without context-switching. AppSec teams get a clearer, more complete view of risk across dependencies, versions, and ecosystems. This makes it easier to prioritize what matters.
Consistent, trusted data
The same Advisor metrics – Popularity, Maintenance, Security, and Community – now power package pages directly on security.snyk.io, for the ecosystems previously supported by Snyk Advisor (npm, PyPI, and Go). This ensures consistency across Snyk’s products and experiences.
A foundation for what’s next
Moving to a single platform allows us to iterate faster, expand ecosystem support, and continue improving how package health insights show up across Snyk workflows.
What’s changing
As part of this transition:
Package pages on security.snyk.io now include Snyk Advisor insights.
Search supports discovering packages even when no vulnerabilities are present.
Traffic from snyk.io/advisor will be redirected to the relevant pages on security.snyk.io.
The standalone Snyk Advisor website is being sunset, but the data – and its value – is staying, growing, and becoming more tightly integrated into Snyk’s platform.
What to expect
This change is designed to be seamless. Existing Advisor URLs will automatically redirect, and no action is required from users. Package health insights are currently available for npm, PyPI, and Go. We’ll continue to enhance package intelligence and expand ecosystem support over time as part of Snyk’s broader supply chain security strategy.
Explore the updated experience on security.snyk.io by searching for any package and viewing health, security, and ecosystem context in one place.
Compete in Fetch the Flag 2026!
Test your skills, solve the challenges, and dominate the leaderboard. Join us from 12 PM ET Feb 12 to 12 PM ET Feb 13 for the ultimate CTF event.
