Case Studies

Don’t just take it from us! Hear directly how our happy customers continue to benefit, by using Snyk in their development workflows.

Docker Hub Authentication: Is 2021 the year you enable 2FA on Docker Hub?

Judging by the reactions I saw in the audience during my past talks on “Securing Containers By Breaking In”, as well as recent reactions on Twitter, not many know about Docker Hub’s fairly recent multi-factor authentication feature. In October 2019, in order to improve the Docker Hub authentication mechanism, Docker rolled out a beta release […]

March 15, 2021

Cheatsheet: top 10 application security acronyms

Picture this situation: you as a developer are in a meeting where a security practitioner is discussing the results of a recent penetration test or static analysis of code you’ve written.  Throughout the discussion, they use various acronyms that they just assume you know the meaning of, yet in reality, they are not terms you’re […]

December 1, 2020

Buffer overflow in Chromium affecting multiple packages

Welcome to the Snyk Monthly Vulnerability Profile. In this series, Snyk looks back on the vulnerabilities discovered by or reported to our Security Research Team. We choose one noteworthy vulnerability from the past month and tell the story behind the discovery, research, and disclosure of the vulnerability. We highlight the researchers, developers, and users who […]

November 23, 2020

test

March 14, 2020

86% of security and tech roles agree that security is a shared responsibility

Deeply integrated security increases the sense of shared responsibility. Having a sense of shared responsibility across the organization contributes to an elevated security- first mindset among employees who will seek out to question and challenge solutions regarding the security impact of the products they build.

February 2, 2020

January in review: funding news, DevSecOps insights study, and much more

From the blog Snyk closes $150M to accelerate developer-first security We are thrilled to announce that Snyk has closed $150 million in funding to accelerate our vision to bring a new approach to application security, enabling businesses to continuously build security into their application development process and culture. Read more here. And you guessed it, […]

January 31, 2020

29% of highest security integration orgs endure friction when collaborating

A watermark of traditional security activities within organizations is the high tension between security teams, the operations or IT, and the core R&D engineering. When all of these teams are siloed with their activities and overall goals unaligned, they create tension and friction that manifests in mis-executive security activities. However, when security practices are integrated […]

January 28, 2020

31% don’t track application dependencies and 38% only track direct dependencies

As we look into the way engineers audit their code bases, we see a strong adoption of automated security tooling, according to the Snyk State of Open Source Security report 2019, with 65% of respondents confirming that observation. It is also important to point out that, even when automated security tools are employed, 79% of the respondents still use security code reviews.

January 28, 2020

48% see security a major constraint on the ability to deliver software quickly

With every data breach disclosed, organizations become more aware of the need to address security early on and throughout the SDLC to ensure customer privacy and assets, feature security, and delivery speed. To do it all well, DevSecOps must be driven by security, but powered by developers.

January 28, 2020

DevSecOps Insights 2020

We are thrilled to announce and share with you the Snyk 2020 DevSecOps Insights! In this study, we discuss the state of DevSecOps, key activities, focus areas, and takeaways. This study is based on data presented in the Snyk 2019 State of Open Source Security report and the Puppet 2019 State of DevOps report. The […]

January 28, 2020

Creating a Language for Security with Chef’s Adam Jacob

As 2019 draws to an end, we are going to be looking back on some great episodes of our podcast The Secure Developer. See the first post here and the second post here. The Secure Developer podcast is part of our vendor neutral, security education focused community MyDevSecOps. The community, previously also known as The […]

November 27, 2019