Enhancements to SAST High-Context Inline Comments in PRs

Improved

As part of our continued effort to improve developer productivity, we have released several enhancements to High-Context Inline Comments today. These updates aim to reduce context switching by delivering contextual and actionable security findings directly within your workflow.

What’s new:

  • Data Flow support for GitLab & Azure Repos - Data flows are now supported for both GitLab and Azure Repos, helping developers trace how a vulnerability travels from source to sink in their code, making investigation and fixes faster. For users leveraging Snyk Broker, they are supported for the following versions:

    • Gitlab: Broker version 4.215.2 or higher

    • Azure Repos: Broker version 4.218.2 or higher

  • We’ve resolved an issue for GitHub and Bitbucket users leveraging Snyk Broker. Data flows will now correctly point to the intended commit reference for the following versions:

    • GitHub: Broker version 4.216.1 or higher

    • Bitbucket: Broker version 4.217.3 or higher

No action is required to enable these changes. You can find more details in the user docs.

Headshot of Mayank Khera

Mayank Khera | Senior Product Manager

Tags:
Snyk AgentPR Check