Starting on June 28, and in accordance with CVSS v3 ratings, we will assign the Critical Severity Level to any security vulnerability identified by Snyk Open Source and Snyk Container with a CVSS score higher than 9.0.
What does this mean for you? First, this change will likely reduce the number of High Severity issues across your projects as some of these issues will now be assigned a Critical Severity level. Second, this change affects automated CLI/API-based pipelines.
To ensure minimum disruption to your existing workflows, we recommend enabling the feature in advance of the stated date above. This can be done using Snyk Preview - a feature that enables you to preview new features before they are fully available within the Snyk Platform.
Please read the migration guide to fully understand the change and how it affects the way you are working in Snyk.
See our blog post for more details.