Announcing Snyk CLI v1.1292.0

[Hot fix update 27-June-24]

We identified an issue that caused snyk test and snyk monitorto fail for some users. To address this problem, we have released a hot fix, version 1.1292.1. Incident causing this hot fix was announced here.

We would like to remind our users that hot fix will be deployed automatically for those who are subscribed to our stable release channel. You can also upgrade directly to the latest version containing this hot fix by following our user documentation.

[Original announcement 26-June-24]

We are pleased to announce the latest stable Snyk CLI release v1.1292.0.

We are introducing the following new features in this version. To learn more about the bug fixes, please reference the release notes.

• Improved security prioritization with CVSS version 4.0

Starting 18-June-2024, and in accordance with the latest official CVSS version published by First.org, new vulnerabilities will be assigned with hand curated CVSS v4.0 vectors by Snyk’s team of Security Analysts. You can read more about this in this blog post.

CVSSv4.0 will be available in previously released CLI versions too. It is an additive change.

• Improved .NET scanning for Snyk Open Source: Early Access

The new scanning approach leverages closer integration with the internal workings of the .NET ecosystem, and works with the Snyk CLI and SCM integrations. You can learn more about this change in user documentation.

• Support for --target-reference in Snyk Container CLI

Snyk Container now supports the --target-reference CLI option, allowing you to specify a reference to differentiate this project from other monitored projects. This helps with monitoring different states of a project within a target, for example: branches, releases, or deployments.

When used, --target-reference option will create sub-groupings on the Projects page in Snyk's web UI.

You can learn more about Snyk CLI release channels in user documentation.