Auditor role template

This is a Group-level read-only role, meaning an Auditor can only view certain areas and functions in Snyk and cannot create PRs, Projects, and more.

This role can view issues, results of scans, and reports. An Auditor often verifies that there is a scan snapshot for a particular resource or Snyk Project. The Auditor may be external to the company.

Group-level permissions

To create this role, enable the following permissions in the relevant categories:

Group Management

Organization management

Snyk Essentials management

Audit Log management

Insights management

Reports management

Security and License Policies

User management

The remaining categories of permissions listed below should have all permissions within them set to disabled:

• IaC settings management

• Issue management

• Request access management

• Role management

• Service account management

• Snyk Apps management

• Snyk Preview management

• SSO settings management

• Tags management

Organization-level permissions

To create this role, enable the following permissions in the relevant categories:

Organization management

Audit Log management

Collection management

Container Image management

Integration management

Project management

Project Ignore management

Reports management

Snyk Cloud management

Webhook management

The remaining categories of permissions listed below should have all permissions within them set to disabled:

• Billing management

• Entitlement management

• Kubernetes Integration management

• Package management

• Project pull request management

• Service account management

• Snyk Apps management

• Snyk Preview management

• User management