Setup requirements for AWS CodePipeline
The Snyk integration for AWS CodePipeline will be discontinued
Action Required
In order to safeguard the security of our services and our customers, Snyk has begun the deprecation of its integration with AWS CodePipeline. To minimize disruption, we recommend that you transition to using AWS CodeBuild and the Snyk CLI as an alternative which will support the same use case and functionality.
Migration Timeline
Effective Oct 30th, 2024, you will no longer be able to add or modify the Snyk plug-in for new or existing pipelines. Existing pipelines will continue to work as-is for 6 months, though we recommend migrating to the new process as soon as possible. To avoid disrupting your CI/CD workflows, you must transition to the Snyk CLI before April 30, 2025. Please refer to the steps in this migration guide to use Snyk CLI with AWS CodeBuild.
We are confident that AWS CodeBuild and the Snyk CLI will meet your requirements.
Check if your project must be built before the scan in the CodePipeline. If the project needs to be built, you must add a CodeBuild step before the Snyk Step.
| Language | Project Type | Build Required | Notes |
|---|---|---|---|
Javascript | npm | No* | Build only required if no |
Javascript | Yarn | No* | Build only required if no |
Java | Maven | Yes | Run |
Java | Gradle | No | |
.NET | Nuget | No* | Build only required if no |
Python | Pip | No* | Build only required if missing a Snyk config file with the language-settings param |
Python | Setup.py | Yes | Run |
Python | Poetry | No* | Build only required if no |
Ruby | Bundler | No* | Build only required if no |
PHP | Composer | No* | Build only required if no |
Scala | SBT | No | |
Go | Go Modules | No | |
Swift/Objective-C | Cocoapods | No* | Build only required if no |
Last updated