Snyk is a user-friendly security solution that enables users to safely develop and use open source code. Users can create automatic scans that allow them to keep a close eye on their code and prevent bad actors from exploiting vulnerabilities. This enables users to find and remove vulnerabilities soon after they appear.
Snyk has a competitive price for its coverage, scalability, reliability, and stability, with no additional costs for standard licensing fees. Some users consider it reasonable, while others find it expensive compared to other solutions. The license model is based on the number of contributing developers, and the price may vary depending on the company's size. However, some users find it acceptable, especially for enterprises. The open-source version is also available and integrated with Jenkins CICD automation pipeline, which gives everything in one place.
Snyk is a cost-effective solution for identifying open-source vulnerabilities during development stages. It can save up to 100 times the cost of identifying and fixing issues during production. By fixing bugs early on, the annual subscription fee for Snyk can be covered, resulting in a high ROI potential.
Snyk is a versatile solution used for various purposes such as security vulnerability detection, DevOps, infrastructure scanning, SaaS testing, continuous vulnerability scans, and managing open-source risks in security and licenses. It allows developers to identify and address potential security issues and is used for code analysis, vulnerability finding, and detecting issues particular to users. Snyk is a cloud-based SaaS offering that is always kept up to date and can be configured on local ID environment or used as a hybrid deployment. It also offers new use cases such as static analysis and secrets scanning.
Snyk's most valuable features include software composition analysis (SCA), security vulnerability detection, easy onboarding, centralized issue fixing, categorization of vulnerabilities, container scans, code scans, stability, automation, open source offering, secrets scanning, static analysis with SAST, clear information and feedback, expertise in security, automatically creating pull requests, developer-friendly product, integration, nice dashboard and reports, and easy integration without a pipeline. Snyk is useful in detecting security vulnerabilities, prioritizing issues, and providing proper reports and resolutions. It is also reliable, smooth, and does not require a lot of preparation or prerequisites.
Improvements that could be made to Snyk include: better reporting and storage capabilities for software composition analysis, more training features for developers in the next release, improved license compliance and policy management, the ability to see the line where errors occur, easier log export function, more user-friendly UI and detailed project view, better interdependency reporting, greater language and framework coverage, reduced false positives on scans, improved customer support and engagement, automatic fixing of security breaches, improved reporting mechanism and adjustment of license ratings, inclusion of dynamic and run-time scanning features, and better database signatures. Compatibility with other products and lower pricing could also be beneficial.
Users have generally found the initial setup for Snyk to be easy and straightforward, with some describing it as quick and taking only a matter of minutes. The solution is cloud-based and integrations with other tools like Jenkins and GitHub were found to be simple. While some noted that there may be a need for support and assistance during the implementation process, overall, users did not encounter any significant difficulties and rated the setup positively.
Snyk is generally considered to be scalable. Users have mentioned that it is easy to scale Snyk once it is installed, as long as the correct cloud server settings are in place. Some users have successfully onboarded and scaled up multiple tools for product and software development. Minor issues have been reported, such as the time it takes to load a dashboard at the organizational level.
Snyk has a generally positive reputation for their customer service and support. Many customers have had good experiences with their tech support team, prompt responses, and helpful resources. Some customers feel that there is room for improvement in areas such as customer success managers and more personalized support options. Snyk's technical support is seen as reliable and available.
Snyk has been consistently praised for its stability by users during POC and regular usage. No downtime or lags have been reported, and the product is considered to be a fine, stable solution, with a rating of nine out of ten for stability. Users have noted that it can be run with both CLI and GUI without stability issues
Snyk has a competitive price for its coverage, scalability, reliability, and stability, with no additional costs for standard licensing fees. Some users consider it reasonable, while others find it expensive compared to other solutions. The license model is based on the number of contributing developers, and the price may vary depending on the company's size. However, some users find it acceptable, especially for enterprises. The open-source version is also available and integrated with Jenkins CICD automation pipeline, which gives everything in one place.
Snyk is a cost-effective solution for identifying open-source vulnerabilities during development stages. It can save up to 100 times the cost of identifying and fixing issues during production. By fixing bugs early on, the annual subscription fee for Snyk can be covered, resulting in a high ROI potential.
Snyk is a versatile solution used for various purposes such as security vulnerability detection, DevOps, infrastructure scanning, SaaS testing, continuous vulnerability scans, and managing open-source risks in security and licenses. It allows developers to identify and address potential security issues and is used for code analysis, vulnerability finding, and detecting issues particular to users. Snyk is a cloud-based SaaS offering that is always kept up to date and can be configured on local ID environment or used as a hybrid deployment. It also offers new use cases such as static analysis and secrets scanning.
Snyk's most valuable features include software composition analysis (SCA), security vulnerability detection, easy onboarding, centralized issue fixing, categorization of vulnerabilities, container scans, code scans, stability, automation, open source offering, secrets scanning, static analysis with SAST, clear information and feedback, expertise in security, automatically creating pull requests, developer-friendly product, integration, nice dashboard and reports, and easy integration without a pipeline. Snyk is useful in detecting security vulnerabilities, prioritizing issues, and providing proper reports and resolutions. It is also reliable, smooth, and does not require a lot of preparation or prerequisites.
Improvements that could be made to Snyk include: better reporting and storage capabilities for software composition analysis, more training features for developers in the next release, improved license compliance and policy management, the ability to see the line where errors occur, easier log export function, more user-friendly UI and detailed project view, better interdependency reporting, greater language and framework coverage, reduced false positives on scans, improved customer support and engagement, automatic fixing of security breaches, improved reporting mechanism and adjustment of license ratings, inclusion of dynamic and run-time scanning features, and better database signatures. Compatibility with other products and lower pricing could also be beneficial.
Users have generally found the initial setup for Snyk to be easy and straightforward, with some describing it as quick and taking only a matter of minutes. The solution is cloud-based and integrations with other tools like Jenkins and GitHub were found to be simple. While some noted that there may be a need for support and assistance during the implementation process, overall, users did not encounter any significant difficulties and rated the setup positively.
Snyk is generally considered to be scalable. Users have mentioned that it is easy to scale Snyk once it is installed, as long as the correct cloud server settings are in place. Some users have successfully onboarded and scaled up multiple tools for product and software development. Minor issues have been reported, such as the time it takes to load a dashboard at the organizational level.
Snyk has a generally positive reputation for their customer service and support. Many customers have had good experiences with their tech support team, prompt responses, and helpful resources. Some customers feel that there is room for improvement in areas such as customer success managers and more personalized support options. Snyk's technical support is seen as reliable and available.
Snyk has been consistently praised for its stability by users during POC and regular usage. No downtime or lags have been reported, and the product is considered to be a fine, stable solution, with a rating of nine out of ten for stability. Users have noted that it can be run with both CLI and GUI without stability issues
Benefits of Snyk
Some of the benefits of using Snyk include:
Reviews from Real Users
Snyk is a security platform for developers that stands out among its competitors for a number of reasons. Two major ones are its ability to integrate with other security solutions and important insights that it can enable users to discover. Snyk enables users to combine its already existing security features with those of other solutions to create far more robust and flexible layers of security than what it can supply on its own. It gives users the ability to dig into the security issues that they may experience. Users are given a clear view of the root causes of these problems. This equips them to address the problem and prevent similar issues in the future.
Cameron G., a security software engineer at a tech company, writes, “The most valuable features are their GitLab and JIRA integrations.The GitLab integration lets us pull projects in pretty easily, so that it's pretty minimal for developers to get it set up. Using the JIRA integration, it's also pretty easy to get the information that is generated, as a result of that GitLab integration, back to our teams in a non-intrusive way and in a workflow that we are already using. Snyk is something of a bridge that we use; we get our projects into it and then get the information out of it. Those two integrations are crucial for us to be able to do that pretty simply.”
Sean M., the chief information security officer of a technology vendor, writes, "From the software composition analysis perspective, it first makes sure that we understand what is happening from a third-party perspective for the particular product that we use. This is very difficult when you are building software and incorporating dependencies from other libraries, because those dependencies have dependencies and that chain of dependencies can go pretty deep. There could be a vulnerability in something that is seven layers deep, and it would be very difficult to understand that is even affecting us. Therefore, Snyk provides fantastic visibility to know, "Yes, we have a problem. Here is where it ultimately comes from." It may not be with what we're incorporating, but something much deeper than that."
Snyk is the #1 ranked solution in top DevSecOps tools, #2 ranked solution in top Software Composition Analysis (SCA) tools, #4 ranked solution in application security solutions, and #5 ranked solution in Container Security Solutions. PeerSpot users give Snyk an average rating of 7.8 out of 10. Snyk is most commonly compared to SonarQube: Snyk vs SonarQube. Snyk is popular among the large enterprise segment, accounting for 64% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 17% of all views.StartApp, Segment, Skyscanner, DigitalOcean, Comic Relief