Prioritize your vulnerabilities with our new Security Policies

We're pleased to announce the general availability of Security Policies - enabling security teams to create rules to automatically prioritize or de-prioritize specific vulnerabilities, and ensuring developers can easily understand which vulnerabilities should be tackled first.

This is just the beginning for Security Policies! We will be adding more conditions and actions over time to give you even more control over what your developers see.

More information about how Security Policies can help with prioritization is available on our blog. To learn more about how to use this capability, check out our help center documentation.

Security Policies is available for Pro and Enterprise users.

Dockerfile vulnerabilities detection directly from Git

We're thrilled to announce that Snyk now detects Dockerfiles directly from your source code manager and surfaces base image vulnerabilities.

This allows you to identify issues before building the container image, and fix them before they land in registry or production based on our base image recommendations.

To get started, import your Git repository (where your Dockerfile lies) and check out the new Dockerfile project created. There, you can see all the relevant information to start taking action, including base image vulnerabilities, base image recommendations and the option to link the Dockerfile project to other image projects you have in Snyk.

dockerfileproj.png

To learn more about Dockerfile project, visit our Knowledge Center.

Snyk Plugin now covers all JetBrains IDEs

Happy to announce that Snyk JetBrains IDE plugin now supports all JetBrains IDEs, allowing developers to find and fix security vulnerabilities and license issues in their open source dependencies from within the IDE!

In addition to IntelliJ and PyCharm, the following IDEs are now supported as well: Android Studio, AppCode, GoLand, PhpStorm, Rider, RubyMine and WebStorm.

jb ides.png

To learn more about the new JetBrains plugin, visit our Knowledge Center.

Python Poetry support

We are very happy to announce that the Snyk CLI now supports testing Python Poetry projects 🎉

Poetry is a great solution for all your Python dependency management, packaging and publishing needs, and we've been keen to support it for a while.

CLI support for Poetry is available from version 1.423, see the documentation for more details.

And watch this space for more announcements as we'll be extending our support in the near future… 🤗

Filtering projects by tags in the UI

We recently released the ability to be able to group projects in the UI with the use of project tags, so you can work with projects at scale. Today, we're thrilled to announce that you can filter projects by those tags in the project listing page - you can now easily find that needle of a project in your haystack!

You can filter by tags and attributes at the same time, so you can organise your system however you please!

Screenshot 2020-11-02 at 17.35.16.png

You can read more about how to scale successfully with Snyk in our blog, and you can learn more about project tagging by visiting our API docs and Knowledge Centre.

Project Tags

Identifying the right projects to work on at the right time can quickly become unmanageable when you scale from dozens to hundreds, or even thousands. Ensuring that your teams are working as efficiently as possible can let them focus on fixing issues rather than finding what they should be working on — you need to be able to find a needle in this haystack!

It’s with great pleasure that we can announce the latest feature to improve management at scale: Project tags. With Project tags, you can organize and locate your projects by tagging them based on any criteria that you have. Whether it’s grouping projects by team, the applications they are part of, or the potential risk they have in your system, you can organize and prioritize your work how you like.

Screenshot 2020-09-30 at 14.22.38.png

You can read more about how to scale successfully with Snyk in our blog, and you can learn more about project tagging by visiting our API docs and Knowledge Centre.

Non-SPDX licenses support

Happy to share that Snyk licenses support has been extended to include non-SPDX licenses. By default, newly added licenses will inherit the “Unknown” license severity, which can be later updated at the settings area.

In order to be alerted, in cases where those licenses were used in any of your projects, verify that the severity level is not set to “None”.

To learn more about license compliance, visit our Knowledge Center.

PyCharm IDE Plugin

Happy to announce that a new Snyk IDE plugin is now available, allowing Python developers to find and fix security vulnerabilities and license issues in their open source dependencies from within PyCharm! 🎉

The new plugin is based on Snyk CLI and supports the following:

  • PyCharm Community / Educational / Professional versions 2020.2 and above
  • All the Python package managers that are supported by Snyk: Pip, PyPI and pipenv

image (27).png

To learn more about the new PyCharm plugin, visit our Knowledge Center.

Signed Commits for Fix and Upgrade PRs in GitHub

One of Snyk’s most powerful features is the ability to open fix and upgrade pull requests, directly in the SCM, making it easy for developers to fix vulnerabilities in their repos and keep the dependencies up to date in one click.

From now on, all of our PRs in GitHub (both fix and upgrade) will be signed with a PGP key, providing developers the confidence that Snyk's fix and upgrade PRs are generated by a trusted source 🎉

image (30).png

To learn more about the GitHub integration and Signed Commits for Fix and Upgrade PRs, visit our Knowledge Center.

Project Header refresh and Project Attributes

If you look closely we’ve given the project page a makeover; we’ve not taken anything away from the page, we’ve just moved things around to help improve the user experience. This is to help cater for project attributes, which are static and non-configurable fields on projects which allow you to add additional metadata (also known as “values”) to a project.

The values added to a project can be used to group, organise, and filter projects in Snyk so that you can work efficiently and effectively prioritise what needs to be worked on. You can apply values to projects through the UI and through the API.

Multiple values.png

To learn more about project attributes, visit our API docs and Knowledge Center.