snyk.io updates
snyk.io updates
app.snyk.io/projects

Improved Fingerprinting for Snyk Code

 

Improved

  

We are excited to announce improvements with the way fingerprinting is done in Snyk Code!

A fingerprinting algorithm is a procedure that maps an arbitrarily large data item to a much shorter bit string, its fingerprint, that uniquely identifies the original data for all practical purposes.

With our reporting functionality recently in Open Beta, the new fingerprinting will make the experience of viewing and retrieving issues data even easier and smoother.

Note, due to this, in the Code Reporting, you may see large numbers of both new and resolved issues.

We advise you to retest your projects.

Once retesting:

  • Many issues will get new, “permanent” issue IDs (in the context of that Snyk project) and this will mean their old issue IDs will disappear.
  • Reporting uses issue IDs to track their status, so this changeover will appear as a lot of issues being new and a lot of issues being resolved.
  • These numbers also may not match exactly since, in the past, multiple issues could share the same old issue ID but that will no longer be the case.
  • The URL of the issue on the Project page will stay the same - so any open tickets via Jira will remain linked.

Snyk Cloud in General Availability

 

New

  

Snyk Cloud is now in General Availability! 🎉 Snyk Cloud is the newest product to join the Snyk Platform, enabling developer-focused cloud security across the SDLC with the following features:

View our Snyk Cloud documentation for more information, and reach out to your account executive if you’re interested in trying it out!

Note: Snyk Cloud is currently available only for Business and Enterprise plans.

New & revamped reporting

 

Open beta

  

We’re excited to update that Snyk’s revamped reporting is now in open beta, providing you with easy, comprehensive, and granular security visibility across your applications!

image (3).png

If you are a Snyk Business or Snyk Enterprise customer you can immediately try these new capabilities for yourself by enabling them via Snyk Preview (Settings → Snyk Preview).

Key new and improved capabilities include the addition of Snyk Code issues in reporting, more filters including CVE, CWE, project tags/attributes, shareable filters, export to CSV & PDF, and overall improved experience and performance.

We’ve put together a blog post describing all these changes. Check it out here.

For more details, please see our user documentation.

Feedback? We want to hear from you! Please send us your input via this form.

Join us for SnykLaunch on November 8th!

You're invited to tune in to Snyk Launch with Snyk’s product leaders, Adi Sharabani, CTO, and Manoj Nair, CPO for the first look at our newest products and releases!

When: Tuesday, November 8, 2022 @ 8:00–9:00 a.m. PT / 11:00 a.m.–12:00 p.m. ET / 4:00–5:00 p.m. GMT

What: We'll have live demos of the latest features and innovations in Snyk’s developer security platform, including:

  • Snyk Cloud

  • Supply chain security innovations

  • Enhanced reporting capabilities

  • And much, much more!

Register: save your spot for SnykLaunch! https://snyk.io/snyklaunch

Group Viewer role for Business and Enterprise customers

We are excited to announce the release of a read-only role at Group level called Group Viewer. This role would enable the users to check out Group level reports and all organization details associated within the Group.

The full set of permissions associated with this role can be found here.

All Business and Enterprise plan customers have access to this role. In the Group Members page, click on the role dropdown next to a member to find the new role and assign.

Screenshot 2022-10-31 at 16.39.00.png

 

New

  

New UI rolling out from today

 

New

  

Starting today, and over the next few days, we’ll be rolling out our new UI to all users on app.snyk.io.

For a quick refresher on the changes we’re introducing, read the blog post, or watch this informative training video.

And as a reminder, for anyone who cannot wait for the new UI to be enabled on their account, you can always opt in yourself via Snyk Preview.

Snyk Code - Support for APEX Scanning

Snyk Code will now support scanning of your native APEX code for vulnerabilities - this is available for all Snyk Code users as of today.

There are no requirements needed to use this feature, as we are releasing it for general availability and will be available to any Snyk Code user.

For more information on Snyk Code supported language please read our user documentation.

 

New

  

New UI available via Snyk Preview

 

New

  

The new UI for app.snyk.io is now available to those who want to get an early look, via Snyk Preview.

Key changes include a new vertical menu, navigation breadcrumbs, and an org switcher for easier switching between Snyk organizations (and groups for Snyk Enterprise customers).

You can opt your organization in to the new experience via Settings > Snyk Preview > Use the new Snyk UI > ✅ Enabled > Save, or read the accompanying blog post for details.

Unified Scanning API utilising Package URLs (purls)

 

New

  

We have launched a powerful low-level API with which you can now directly check packages for vulnerabilities, enabling you to add package scanning into a huge number of possible workflows. This is launching with support for maven, npm, cocoapods, composer, gem, nuget, pypi, hex, cargo and generic (C/C++) packages, and is available to all Snyk Open Source customers. For more information on getting started, please refer to our documentation.

Proxy authentication in Snyk CLI for Windows

 

New

  

We're announcing support for SPNEGO-based Kerberos and NTLM proxy authentication protocol support in Snyk CLI for Windows, with support for other operating systems coming shortly.

Snyk CLI detects the need to authenticate and discovers the appropriate authentication mechanism automatically once configured to use a proxy.

Read the accompanying blog or our documentation on configuring a proxy in Snyk CLI for details.