updates updates

Reachable Vulnerabilities for GitHub Java projects





Snyk Open Source now supports reachable vulnerabilities analysis for Maven and Gradle projects imported from GitHub.

Snyk will display any path found from your code to the vulnerable functions of each issue. You can filter for reachable vulnerabilities in Reports and the Project Issues, and they are also factored into Priority Scores.

This feature is powered by the semantic code analysis capabilities of Snyk Code (no separate subscription required), and requires Snyk to temporarily clone your repository.

You can opt-in by visiting Settings > Languages > Reachable Vulnerabilities.

Screen Shot 2021-09-27 at 11.09.38.png