Home
Posts
Photos
About
Likes
Create a Page
See more of Snyk by logging into Facebook
Message this Page, learn about upcoming events and more.
See more of Snyk by logging into Facebook
Message this Page, learn about upcoming events and more.
Not Now
Posts

Snyk is now available on the GOV UK G-Cloud Digital Marketplace!

Snyk - Snyk is available on the Gov.uk Digital Marketplace!
Snyk Enterprise is now available on the UK government G-Cloud digital marketplace! Government services can now easily use Snyk to protect their applications against known vulnerabilities in their…
snyk.io

Learn how to selectively ignore vulnerabilities using the `snyk ignore` command in this new quick tip video.

Using Snyk Ignore to ignore issues
In this quick tip, we'll show how to use the snyk ignore command to take full control over what issues you want Snyk to ignore, and for how long. For more in...
youtube.com
See All
Photos
No automatic alt text available.
Image may contain: text
No automatic alt text available.
See All
Posts

The folks RisingStack posted a transcript & video of Danny Grander's Node.js security talk. Great info + good dogs!

Writing Secure Node.js Code - Danny Grander | @RisingStack
Danny walkes us through hacking a vulnerable Node.js application, as well as looking in-depth into three different vulnerabilities in popular npm packages.
community.risingstack.com

Vulnerable dependencies & security misconfiguration (A9 & A5 in @owasp top 10) caused 42% of the top 50 breaches.

Snyk - Which of the OWASP Top 10 Caused the World’s Biggest Data Breaches?
The OWASP Top 10 is a well known index of web app security vulnerabilities which is used every day by security professionals, but it doesn't currently take into account how often those…
snyk.io
Snyk
April 27

Snyk for Serverless is on Product Hunt: Start monitoring your AWS Lambda and Heroku apps for known vulnerabilities!
http://buff.ly/2q99KdD

No automatic alt text available.
Snyk
April 26

Snyk for Serverless is live! Monitor your Heroku apps and Amazon Web Services lambda functions for vulnerable dependencies!

Snyk - Introducing Snyk for Serverless
Today we're excited to announce Snyk's new solution for securing your serverless functions, designed to easily integrate and protect serverless-based applications! The initial launch features tight…
Learn More
snyk.io
Snyk
April 20

A proper build process can be a big boost for security! Learn how Travis CI & Snyk can help keep your app secure

Continuous Security with Snyk and Travis CI
This is a guest blog post from Tim Kadlec, Developer Advocate at Snyk. Security isn't easy. You have to be able to protect your application from each and every angle, against attackers who only...
blog.travis-ci.com
Snyk
April 19

Serverless helps mitigate some security issues but amplifies others. Guy Podjarny discusses its impact on 9 key concerns.

Snyk - Serverless Security implications—from infra to OWASP
By its very nature, Serverless (FaaS) addresses some of today's biggest security concerns, but it doesn't fix it all. This post outlines the top areas where Serverless helps or hinders our security…
snyk.io
Snyk shared their post.
April 18
Snyk
April 18

You can now keep your Java (and other Maven supporting languages) projects free of known vulnerabilities with Snyk!

Snyk - Maven support is here!
Last November, we announced that in addition to Node.js support, we were adding support for Ruby. And now it's time to expand yet again. Today we're excited to announce Snyk's support for Java and…
snyk.io
Snyk
April 18

You can now keep your Java (and other Maven supporting languages) projects free of known vulnerabilities with Snyk!

Snyk - Maven support is here!
Last November, we announced that in addition to Node.js support, we were adding support for Ruby. And now it's time to expand yet again. Today we're excited to announce Snyk's support for Java and…
snyk.io
Snyk
April 12

Well, hello there Yarn.

Image may contain: text
Snyk
April 5

We're really excited to announce that Snyk projects are now free!

Snyk - Continuously secure all apps with unlimited Snyk projects
To do security well, you have to do it continuously, and here at Snyk we want to make that easy. That's why we changed our pricing, removing our project limit and letting you protect all your apps…
snyk.io
Snyk
March 29

We ran a test on the top 5k URL's from Alexa—77% of them use a JavaScript library with a known vulnerability! http://buff.ly/2o8niIh

No automatic alt text available.
Snyk
March 21

Dynamic typing in JS & Ruby open the door to attack via type manipulation. Guy Podjarny explains in the first of a series

Snyk - Type Manipulation: Escaping Template Sandboxes
This is the first of a series of posts about Type Manipulation, each demonstrating one or more real-world vulnerabilities made exploitable by manipulating types, and explaining how it could have been…
snyk.io
Snyk
March 16

Remember the great Visual Studio Code plugin for Snyk we mentioned recently? We talked to npm i petermbenjamin about how & why he built it

Snyk - Building a Snyk Plugin for VS Code: An Interview with Peter Benjamin
Peter Benjamin recently built a fantastic VS Code plugin or Snyk. We asked him a few questions about the plugin and how and why he built it.
snyk.io
Snyk
March 14

How to protect yourself from a recent high-severity vulnerability in the very popular qs npmbot package:

Snyk - Fixing a Prototype Override Protection Bypass Vulnerability in qs
Last month, we added a high-severity Prototype Override Protection Bypass vulnerability in the qs package to our database. The fix was released in updated versions of the library about a week ago.…
snyk.io
Snyk shared a post.
March 10

Tried it out this morning and works great!

Peter Benjamin to Snyk
March 9

Visual Studio Code developers, rejoice!
You can now "snyk test" your projects' dependencies and get results in the editor:

petermbenjamin/vscode-snyk
vscode-snyk - Visual Studio Code extension for Snyk.io
github.com