Checkmarx One and Snyk are prominent competitors in the code security and vulnerability detection category. Checkmarx One holds an edge in code analysis, while Snyk excels in smooth integration and quick vulnerability detection due to its comprehensive database.
Features: Checkmarx One provides a detailed code analysis, supports scanning of both source and binary code, and integrates easily with multiple repositories. It offers SAST without the need for code compilation and supports various programming languages. Snyk is known for its seamless integration, ease of use, and a robust vulnerability database. It specializes in open-source libraries, giving quick visibility into any vulnerabilities within existing projects.
Room for Improvement: Checkmarx One could benefit from better management of false positives, improved dashboard customization, and enhanced dynamic testing capabilities. It also needs to expand its language support. Snyk should improve its notification filtering, IDE integration, and language support. Enhancements in reporting capabilities and reducing false positives would be beneficial, alongside advancements in dynamic and runtime scanning.
Ease of Deployment and Customer Service: Checkmarx One can be deployed on-premises or in the cloud but can face challenges with larger installations. Its customer service is generally praised as swift and informative, though technical support can be delayed at times. Snyk's primary deployment is in cloud environments, noted for its easy setup and integration flexibility. Its customer service is rated high for providing quick and knowledgeable support, yet more detailed guidance is desired by some users.
Pricing and ROI: Checkmarx One is viewed as comprehensive but expensive, featuring complex pricing models and delivering long-term ROI via extensive security features. Snyk is recognized for competitive pricing and flexible licensing models, suitable for various team sizes. It offers significant ROI in developer efficiency and integration, albeit considered premium for full features.
Our long-standing association has ensured smooth communication, resulting in favorable support experiences and satisfactory issue resolution.
Their response time aligns with their SLA commitments.
Snyk allows for scaling across large organizations, accommodating tens of thousands of applications and over 60,000 repositories.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
Both Veracode and Snyk should implement this new scoring system for CVSS and AIVSS.
It lacks the ability to select branches on its Web UI, forcing users to rely on CLI or CI/CD for that functionality.
The inclusion of AI to remove false positives would be beneficial.
After negotiations, we received a special package with a good price point.
Snyk is recognized as the cheapest option we have evaluated.
My experience with the initial setup of Checkmarx One is straightforward; it is not complex compared to other tools that I have tried.
Snyk helps detect vulnerabilities before code moves to production, allowing for integration with DevOps and providing a shift-left advantage by identifying and fixing bugs before deployment.
Our integration of Snyk into GitHub allows us to automatically scan codebases and identify issues, which has improved efficiency.
The best feature of Snyk is the integration with our ticketing system, which is Jira.
| Product | Market Share (%) |
|---|---|
| Checkmarx One | 10.2% |
| Snyk | 6.5% |
| Other | 83.3% |
| Company Size | Count |
|---|---|
| Small Business | 30 |
| Midsize Enterprise | 9 |
| Large Enterprise | 38 |
| Company Size | Count |
|---|---|
| Small Business | 20 |
| Midsize Enterprise | 8 |
| Large Enterprise | 21 |
Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.
Checkmarx One offers comprehensive application scanning across the SDLC:
Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.
Snyk's AI Trust Platform empowers developers to innovate securely in AI-driven environments, ensuring rapid and secure software development with enhanced policy governance.
Snyk’s platform integrates AI-ready engines across the software development lifecycle, offering broad coverage with high speed and accuracy essential for fast-paced coding environments. AI-driven features include visibility, prioritization, and tailored security policies that enable proactive threat prevention and quick remediation. By focusing on LLM engineering and AI code analysis, Snyk supports secure and productive development processes. The platform's partnerships, including GenAI code assistants, enhance AI application security by addressing new threats and code velocity challenges.
What are the key features of Snyk?Snyk is implemented across industries focusing on agile development and DevSecOps, enhancing software delivery speed and security. It is widely used for continuous monitoring and adherence to security and licensing standards, especially in environments relying on Docker image security and CI/CD pipeline integration.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
