PR Checks for Snyk Code
  • PR Checks for Snyk Code is currently in Closed Beta. If you would like to activate it in your organization, contact your Snyk account team.
  • PR Checks for Snyk Code is currently not supported when using the Snyk Broker – Code Agent deployment method.
Snyk Open Source also provides PR checks - see PR Checks for Snyk Open Source.

The PR Checks feature is applicable to all supported SCMs.
The PR Checks feature enables you to apply Snyk Code test to every Pull Request you are creating in your integrated SCM, before merging it into the target branch. By using the PR Checks feature, you can detect security issues at an early stage in your development process, seeing the test results shortly after you write new code, and identifying and fixing issues as they emerge in your native workflow.
When the PR Checks feature is enabled, Snyk Code automatically scans your source code PRs once they are created, in search of security vulnerabilities. Every additional commit that will be made to the open PRs, will be scanned automatically as well. When the scan is completed, Snyk Code displays its findings in the SCM – either passed or failed. If security vulnerabilities are found, Snyk Code automatically fails the scanned PRs, thus preventing new security issues from entering into your code:
When SAST issues are found in your PR, Snyk Code provides you with additional details on each detected issue, and offers you fix examples to assist you in developing secure code. By clicking the discovered issues or the link next to them in your SCM, you can open the Snyk Web UI, and view the full details of each discovered vulnerability in your PR:
If you want to pass PRs that were automatically failed due to vulnerabilities that were found in them, Snyk Code also enables you to mark failed PRs as successful via the Snyk Web UI. Once you click the Mark as successful in SCM button on the Web UI, your failed PRs are considered as successful in the SCM, and can be merged into the target branch:
The PR Checks feature is applied only to repositories that were imported to Snyk from the integrated SCM. However, after the initial import, any new file or folder that will be added in the SCM to the imported repositories, will be included in the PR Checks. The PR Checks feature can be enabled for your integrated SCM on the level of an entire Organization or on the level of a specific Project.
Every PR check is considered as a “test” in the test count of the related Organization. New commits to an open PR branch are also checked automatically, and therefore these commit checks are also counted as “tests”.

The workflow of using the PR Checks feature is as follows:
Export as PDF
Copy link
Edit on GitHub
On this page
Understanding the PR Checks feature
PR Checks workflow