SupportAPI docsProduct updatesSign up for free
Search…
Snyk User Documentation
Introducing Snyk
Implementing Snyk in your teams
Getting started
Snyk Web UI
Snyk CLI
Snyk API
Snyk for IDEs
Snyk Apps
Snyk Integrations
SNYK PRODUCTS
Snyk Open Source
Snyk Code
Introducing Snyk Code
Snyk Code - Supported languages and frameworks
Security Rules used by Snyk Code
Getting started with Snyk Code
Exploring and working with the Snyk Code results
Using Automatic PR Checks for securing your source code
Prerequisites for the Automatic PR Checks feature
Enabling the Automatic PR Checks
Viewing the PR Checks in your SCM
Viewing and working with the PR Check results on the Snyk Web UI
Using Snyk Code via the CLI
Using Snyk Code via the IDE
Deployment Options
Snyk Container
Snyk Infrastructure as Code
USING SNYK
Snyk Broker
User and group management
Fixing and prioritizing issues
Reports
Snyk Tools
SNYK INFO
Disclosing vulnerabilities
How Snyk handles your data
Snyk Partner workshops
Powered By GitBook
Using Automatic PR Checks for securing your source code
The Automatic PR Checks feature in Snyk Code is currently in Closed Beta. If you would like to activate it in your organization, contact your CSM.

Understanding the Automatic PR Checks feature

Note: The Automatic PR Checks feature is applicable to all supported SCMs.
The Automatic PR Checks feature enables you to apply Snyk Code test to every Pull Request you are creating in your integrated SCM, before merging it into the target branch. By using the Automatic PR Checks feature, you can detect security issues at an early stage in your development process, seeing the test results shortly after you write new code, and identifying and fixing issues as they emerge in your native workflow.
When the Automatic PR Checks feature is enabled, Snyk Code automatically scans your source code PRs once they are created, in search of security vulnerabilities. Every additional commit that will be made to the open PRs, will be scanned automatically as well. When the scan is completed, Snyk Code displays its findings in the SCM – either passed or failed. If security vulnerabilities are found, Snyk Code automatically fails the scanned PRs, thus preventing new security issues from entering into your code:
When SAST issues are found in your PR, Snyk Code provides you with additional details on each detected issue, and offers you fix examples to assist you in developing secure code. By clicking the discovered issues or the link next to them in your SCM, you can open the Snyk Web UI, and view the full details of each discovered vulnerability in your PR:
If you want to pass PRs that were automatically failed due to vulnerabilities that were found in them, Snyk Code also enables you to mark failed PRs as successful via the Snyk Web UI. Once you click the Mark as successful in SCM button on the Web UI, your failed PRs are considered as successful in the SCM, and can be merged into the target branch:
The Automatic PR Checks feature is applied only to repositories that were imported to Snyk from the integrated SCM. However, after the initial import, any new file or folder that will be added in the SCM to the imported repositories, will be included in the automatic PR Checks. The Automatic PR Checks feature can be enabled for your integrated SCM on the level of an entire organization or on the level of a specific Project.
The workflow of using the Automatic PR Checks feature is as follows:
Previous
Viewing the Snyk Code results via the Web UI
Next
Prerequisites for the Automatic PR Checks feature
Last modified 8d ago
Export as PDF
Copy link
Edit on GitHub
Contents
Understanding the Automatic PR Checks feature