JetBrains plugins

Use this documentation to get started with the JetBrains plugin.

Snyk offers IDE integrations that allow you to use the functionality of Snyk in your Integrated Development Environment. This page describes the Snyk JetBrains plugins. For information about all of the IDE plugins and their use, see Snyk for IDEs in the docs.

Snyk supports JetBrains plugins from version 2020.2 for IntelliJ IDEA and WebStorm as well as Android Studio, AppCode, GoLand, PhpStorm, PyCharm, Rider, and RubyMine.

Snyk uses Python in order to scan and find your dependencies. If you are using multiple Python versions, use the --command option to specify the correct Python command for execution. The plugin does not detect the Python version associated with the project.

The Snyk JetBrains plugins provide analysis of your code, containers, and Infrastructure as Code configurations. The plugin is based on the Snyk CLI and also uses Snyk APIs. The plugin supports product features in the CLI for Snyk Open Source and Snyk Container as well as for Snyk Code and Snyk IaC with some limitations.

Snyk scans for vulnerabilities and misconfigurations and returns results with security issues categorized by issue type and severity.

For open source, you receive automated algorithm-based fix suggestions for both direct and transitive dependencies. For containers, you can automate upgrades to the most secure base image to quickly resolve numerous vulnerabilities. This single plugin provides a Java vulnerability scanner, a custom code vulnerability scanner, an open-source security scanner, and an application security plugin.

Snyk scans for the following types of issues:

Open Source Security - security vulnerabilities and license issues in both direct and in-direct (transitive) open-source dependencies pulled into the Snyk Project. See also the Open Source docs.

Code Security - security vulnerabilities in your code. See also the Snyk Code docs.

Container Security - security vulnerabilities in your base images. See also the Snyk Container docs.

Infrastructure as Code (IaC) Security - configuration issues in your IaC templates: Terraform, Kubernetes, CloudFormation, and Azure Resource Manager. See also the Snyk Infrastructure as Code docs.

The JetBrains plugins also provide the Open Source Advisor to help you find the best package for your next project. Information is provided on the package health of the direct dependencies you are using including popularity, maintenance, risk, and community insights.

After you complete the installation steps on this page and the configuration and authentication steps on the next two pages, continue by following the instructions in the other JetBrains plugins docs:

Supported languages, package managers, and frameworks

Supported operating systems and architecture

Snyk Plugins are not supported on any Operating System that has reached End Of Life (EOL) with the distributor.

You can use the Snyk JetBrains plugin in the following environments:

  • Linux: 386, AMD64, and ARM64

  • Linux Alpine: 386 and AMD64

  • Windows: 386, AMD64, and ARM64

  • MacOS: AMD64 and ARM64

Install the JetBrains plugin

The Snyk JetBrains plugin is available for installation on the JetBrains marketplace.

Install using the IDE plugins library:

  1. Open the Preferences window in the IDE.

  2. Navigate to the Plugins tab.

  3. In the Plugins tab, search for Snyk.

  4. Select the Snyk vulnerability scanning plugin.

  5. Click on the Install button.

  6. When the installation is complete, restart the IDE.

Continue with the steps on the JetBrains configuration page.


If you need help, submit a request to Snyk Support.

Last updated

More information

Snyk privacy policy

© 2023 Snyk Limited | All product and company names and logos are trademarks of their respective owners.