Links

Introducing Snyk

What is Snyk?

Snyk is a platform allowing you to scan, prioritize, and fix security vulnerabilities in your code, open source dependencies, container images, and Infrastructure as Code (IaC) configurations.

Snyk’s developer-first approach

Developers now assemble applications with a combination of proprietary and open-source code, run that code in containers, and then deploy with infrastructure as code configurations with technologies like Kubernetes and Terraform.
A good security process secures each of these components where they are built and maintained. Snyk integrates into DevOps processes to work with developers using the methods each prefers, while following and supporting industry best practices. Snyk integrates directly into your IDEs, workflows, and automation pipelines to add security expertise to your toolkit.
Developer Security Platform
Developer Security Platform: Products and Developer experience

Use Snyk in your workflow

  • Secure your code: use Snyk Open Source to fix vulnerabilities in your open source dependencies and Snyk Code to fix vulnerabilities in your source code.
  • Secure your containers: use Snyk Container to fix vulnerabilities in container images and Kubernetes applications.
  • Secure your deployment: and Snyk Infrastructure as Code (IaC) to fix misconfigurations in Terraform, CloudFormation, Kubernetes, and Azure templates. Use IaC+ to fix misconfigurations in Amazon Web Services accounts, Microsoft Azure subscriptions, and Google Cloud projects.

Choose how to run Snyk

You can run Snyk in the following ways:
  • Web: the Snyk Web UI (app.snyk.io) provides a browser-based experience, along with functions such as configuration settings, filtering and fixing discovered issues, and reports.
  • CLI: the Snyk Command Line Interface enables you to run vulnerability scans on your local machine and integrate Snyk into your pipeline.
  • IDEs: the Snyk IDE integrations enable you to embed Snyk in your development environment.
  • API: the Snyk API enables you to integrate with Snyk programmatically, tuning Snyk’s security automation to your specific workflows.
This video shows using the CLI to scan for vulnerabilities.
Running Snyk from the command line.

How can Snyk work in my environment?

Snyk tech stacks supported depend on the Snyk product you use:

What can Snyk integrate with?

Snyk integrations for your software development process allow you to integrate Snyk into your development and security processes, including source control, CI/CD, and many others.
See Snyk integrations and Snyk for IDEs for details.

What does Snyk cost?

Snyk has several pricing plans available, from free to Enterprise. See Snyk Pricing Plans.

What happens to my data?

See How Snyk handles your data for details of Snyk data handling.