SupportSnyk LearnAPI referenceProduct updatesSign up for free

Snyk Essentials and Snyk AppRisk

Snyk AppRisk is a product that enables Application Security teams to implement, manage, and scale a modern, high-performing, developer security program. The product covers use cases under Application Security Posture Management (ASPM).

Snyk Essentials helps AppSec teams better operationalize and scale usage of Snyk with broad application visibility and security coverage management. At the same time, Snyk AppRisk enhances the foundational capabilities of Snyk Essentials by supporting non-Snyk Application Security products, offering a more extensive and flexible ASPM approach. It enables integrations with a wider range of security tools beyond the Snyk ecosystem, advanced security policies, in-depth risk analysis, and more customizable controls. This allows security teams to manage and maintain a robust security framework across diverse applications and development environments, ensuring a heightened level of protection and compliance.

Snyk Essentials enables:

  • Automated app asset discovery: Continually discover application assets and classify them by business context, ensuring security is in sync with development.

  • Tailored security controls: Define and manage appropriate security and compliance requirements, and verify the correct controls are in place.

  • Risk-based prioritization: Assess risk for each app based on application context and best-in-class security analysis and fix guidance to focus developer remediation efforts on issues that matter most to the business.

Snyk AppRisk builds upon the capabilities of Snyk Essentials by offering:

  • More sophisticated risk-based prioritization with runtime Insights - such as whether an app is deployed and public facing, and whether vulnerable packages found by Snyk Open Source are actually used in runtime.

  • Manage security coverage for secrets detection tools: Assess coverage for secrets detection alongside Snyk's AST products.

  • Scalability for diverse environments: Robust security management across various development environments.

The following videos show the capabilities of Snyk Essentials and Snyk AppRisk.

Snyk Essentials and Snyk AppRisk core capabilities overview
Snyk AppRisk additional capabilities overview

Features

Snyk Essentials includes the following features:

  • Integrations to support ingesting data from SCM tools for asset discovery, Snyk Application Security Testing products for security controls coverage, and ticketing or notification tools for policy actions. Use the Integration Hub from the Integration page to add and set up new integrations.

  • Policies to classify and tag assets with business context and configure actions using a Policy Builder UI.

  • Inventory layouts for managing assets and viewing Snyk coverage.

  • Dashboard to view, add, and customize widgets.

On top of the Snyk Essentials features, Snyk AppRisk offers:

  • Integrations with non-Snyk products to support security coverage and Insights use cases

  • Insights for runtime context - providing risk factors to help with risk-based prioritization.

  • Analytics for reviewing and comparing assets and issues metrics at the level of asset classes, applications, or code owners.

Using Snyk Essentials and Snyk AppRisk

Access Snyk Essentials and Snyk AppRisk by following these steps:

  1. Log in to Snyk Web UI and navigate to the Group view.

  2. Ensure you are a Group Administrator for the Group associated with Snyk AppRisk, or that you have a custom role assigned with the necessary permissions.

Navigate to the Snyk Essentials vs Snyk AppRisk to check the features availability.

PreviousIAC sources usageNextSnyk Essentials vs Snyk AppRisk

Last updated

Was this helpful?