Expanded Jakarta EE and Java EE Coverage in Snyk Code

Snyk Code is improving its Jakarta EE and Java EE coverage to enhance vulnerability detection in enterprise Java applications. This update expands support for key frameworks, increasing accuracy and improving security insights.

What’s New?

• Additional Data Sources: Now includes JMS messaging, WebSocket, and Mail as sources of user-controlled data.

• Broader Sink & Sanitizer Coverage: Expanded detection across Jakarta EE components.

• ConstraintValidator Support: Recognizes sanitizers defined via ConstraintValidator annotations within the same repository.

This update will be available as part of our Java language support on March 1, 2025.