Introducing Snyk

What is Snyk?

Snyk is a platform allowing you to scan, prioritize, and fix security vulnerabilities in your own code, open source dependencies, container images, and Infrastructure as Code (IaC) configurations.

Snyk’s developer-first approach

Developers now assemble applications with a combination of proprietary and open source code, run that code in containers, and then deploy with infrastructure as code configurations with technologies like Kubernetes and Terraform.

A good security process secures each of these components where they are built and maintained. Snyk integrates into DevOps processes to work the with developers using the methods each prefers, while following and supporting industry best practices. Snyk integrates directly into your IDEs, workflows, and automation pipelines to add security expertise to your toolkit.

Use Snyk in your workflow

Secure your code: use Snyk Open Source to fix vulnerabilities in your open source dependencies, and Snyk Code to fix vulnerabilities in your source code.
Secure your containers: use Snyk Container to fix vulnerabilities in container images and Kubernetes applications
Secure your deployment: and Snyk Infrastructure as Code (IaC) to fix misconfigurations in Terraform, CloudFormation, Kubernetes, and Azure templates. Use Snyk Cloud to fix misconfigurations in Amazon Web Services accounts, Microsoft Azure subscriptions, and Google Cloud projects.

Choose how to run Snyk

You can run Snyk in the following ways:

Web: the Snyk Web UI (app.snyk.io) provides a browser-based experience, along with functions such as configuration settings, filtering and fixing discovered issues, and reports.
CLI: the Snyk Command Line Interface enables you to run vulnerability scans on your local machine and integrate Snyk into your pipeline.
IDEs: the Snyk IDE integrations enable you to embed Snyk in your development environment.
API: the Snyk API enables you to programmatically integrate with Snyk, tuning Snyk’s security automation to your specific workflows.

This video shows using the CLI to scan for vulnerabilities.

How can Snyk work in my environment?

Snyk tech stacks supported depending on the Snyk product you use:

Snyk Open Source: see Open Source - Supported languages and package managers.
Snyk Code: see Snyk Code - Supported languages and frameworks
Snyk Container: see Supported operating system distributions
Snyk Infrastructure as Code: see Snyk IaC and Cloud - Supported providers
Snyk Cloud: see Snyk IaC and Cloud - Supported providers

What can Snyk integrate with?

Snyk integrations for your software development process allow you to integrate Snyk into your development and security processes, including source control, CI/CD, and many others.

See Snyk integrations and Snyk for IDEs for details.

What does Snyk cost?

Snyk has several pricing plans available, from free to Enterprise. See Snyk Pricing Plans.

What happens to my data?

See How Snyk handles your data for details of Snyk data handling.

PreviousGetting started NextExploring the Snyk Web UI

Last updated 2 years ago

Was this helpful?