View and understand Snyk upgrade pull requests

In addition to fix advice, Snyk can automatically create pull requests (PRs) on your behalf in order to upgrade your dependencies based on the scan results. Snyk currently supports this feature for npm, Yarn, Maven-Central, NuGet (C#), Pip and PyPI (Python), and Bundler (Ruby) projects through GitHub, GitHub Enterprise Server, BitBucket Cloud, GitLab, and Azure repos.
To use with the Broker, your administrator should first upgrade to v4.55.0 or later.
NOTE Administrators and account owners manage settings for Snyk upgrade pull requests from the Snyk Web UI on both the organization and the project levels, by configuring whether the feature is on (enabled by default) and under what conditions Snyk should submit upgrade pull requests, if at all.

Viewing pull request details before merging

Once Snyk submits an upgrade pull request on your behalf, you can view the pull request and all related details directly from the relevant repository.
To quickly review the pull request, hover over it and you can see the recommended upgrade and other pull request summary details:
Open the pull request to view in-depth details, including package release notes, and vulnerabilities included in the recommended upgrade.:
Click the Issue link from the table to view all details for the specified vulnerability, directly from our database.
Once you've reviewed the pull request, you can approve it for merge.
© 2023 Snyk Limited | All product and company names and logos are trademarks of their respective owners.