Snyk Code Update

Improved

On August 5th, 2025, Snyk Code will receive a significant analysis and coverage upgrade. This update will enhance detection capabilities and may lead to a change in findings for some customers, including new findings and a reduction in false positives for most.

Key improvements in this release include:

  • Go & PHP: Improved analysis of multi-variable declarations to reduce false positives in common assignment patterns.

  • All Languages: Enhanced inter-file analysis to more accurately track when data is sanitized across multiple files, significantly reducing a common source of false positives.

  • All Languages (except Scala & Ruby): Better detection of field-level sanitization within a single file, reducing false positives where tainted data is later made safe.

  • JavaScript and TypeScript: Support for mongoose as well as express-mongo-sanitize has been added.

  • Java: Added support for the JAX-RS framework.

  • Go: Added support for the sqlx library.

  • Scala: Added support for the Slick framework.

  • Python: Introduced initial support for CWE-330, detecting insecure random number generation related to ciphers.

Headshot of Sebastian Roth

Sebastian Roth | Senior Product Manager

Tags:
SAST