Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Snyk: Developer Security Platform (Free Tier)

Snyk | 1

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

117 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Andrei h.

So useful and so easy to integrate in the Dev pipelines. Love the automation capabilities!

  • January 13, 2021
  • Review verified by G2

What do you like best about the product?
The CLI is great, and the different integrations provided out of the box make it even better! We migrated from a tool that had very poor UX when trying to integrate with CI pipelines, not to mention the lack of integrations.
What do you dislike about the product?
That sometimes the CLI results and the GitHub integration results are different We've had that problem in the past several times and we were told to prefer the CLI results instead of the Github ones.
What problems is the product solving and how is that benefiting you?
Removing the 3rd party vulnerabilities from our products, thus making a more secure supply chain. This helped us removing vulnerabilities from components that we ship on-prem to clients and no more having releases rejected by our clients.

Also, the GoLang scanning is not as comprehensive as the one for Java/C#
Recommendations to others considering the product:
If you're looking to automate the OSS scanning and integrate it into the pipelines (as part of a DevSecOps initiative), Snyk is by far the best tool I've seen.

    Banking

Scalable tool, it was easy to integrate multiple projects in no time.

  • January 13, 2021
  • Review provided by G2

What do you like best about the product?
I believe that we had very good communication with Snyk representatives. We received support whenever it was needed, discussions were always professional and the actions were followed up on Snyk part.
Another thing that helped us a lot was the scalability of the product. Very fast scans and easy to onboard new projects helped us speed the development process and let our developers focus on business aspects rather than integration concerns. With trusted partners like Snyk, we were able to automate and enforce a lot of SDLC practices and decrease the release frequency from once in 6 months to multiple per week.
What do you dislike about the product?
I cannot say I found something that I disliked. All feedback was received and addressed.
What problems is the product solving and how is that benefiting you?
We are developing banking software and security for us is not optional. We are using snyk for automatic OSA checks as part of our secure development life cycle. Every new merge is checked and this helps us to have a continuous delivery approach on a monolith of 1.5 millions of line of code where more than 50 developers are working on it.

    Rohit P.

Address your open source coverage concerns with Snyk OSS Scanner

  • January 12, 2021
  • Review provided by G2

What do you like best about the product?
Snyk was onboarded to help with security vulnerability and license spread visibility across the open source frameworks that are used across the company. It has truly been a groundbreaking service that we start utilizing from the get go both in terms of identifying risk as well as enabling pathways to remediation. I strongly feel the tool was targeted towards developers to help with cross-functional collaboration and visibility into both the dependencies and the defects they contain.
What do you dislike about the product?
Business Metrics and reports could be better
What problems is the product solving and how is that benefiting you?
Coverage across OSS projects and frameworks, while embedding security into CI/CD pipelines

    Biotechnology

works great for us with mainly being a javascript and python shop.

  • January 12, 2021
  • Review verified by G2

What do you like best about the product?
developer-first and integrations work well with popular services like GitHub. CLI is also great as well.
What do you dislike about the product?
UI can sometime clunky and difficult to navigate. The API is good, but the Reporting API could use some improvements regarding getting stats on a group-level.
What problems is the product solving and how is that benefiting you?
Figuring out what our software is made of and the vulnerabilities within. Some benefits include seeing the amount of not-supported or abandoned projects we use and being able to report on it.

    Shawn M.

Great Reports

  • January 12, 2021
  • Review verified by G2

What do you like best about the product?
Able to view an organisation wide report on all the vulnerabilities of each package in the repos.
What do you dislike about the product?
I'm not sure if this is a feature, but maybe more automation like github dependency issues where a PR can be submitted with the click of a button from snyk.
What problems is the product solving and how is that benefiting you?
We are a security company and our customers security are highest priority, having snyk be proactive for us to jump on vulnerabilities in packages are critical.

    Information Technology and Services

Great tool for tracking vulnerabilities

  • January 12, 2021
  • Review verified by G2

What do you like best about the product?
It’s completely automated eliminates lots of manual intervention for fixing the vulnerability with different versions of repository.
What do you dislike about the product?
Sometimes the vulnerability alerts might not be genuine.
What problems is the product solving and how is that benefiting you?
Identify secure vulnerability versions.
Recommendations to others considering the product:
It's a great automated software for detecting vulnerabilities.

    Information Technology and Services

First-class cloud compliance platform, wonderful to use

  • October 13, 2020
  • Review verified by G2

What do you like best about the product?
Ability to visualize and easily navigate our cloud infrastructure, getting a birds-eye view of our configuration items and policies, with custom rules, alerts, and exceptions as needed. The policy enforcement is a powerful tool for correcting baseline drift. The front-end of the app is very well made so there are no UX problems in my view. I use a lot of tools, and am not shy about delivering the news when it is painful to use- Fugue is great to use.
What do you dislike about the product?
If I had to pick something annoying, I guess the visualizer could render faster.
What problems is the product solving and how is that benefiting you?
Change/ configuration management and visibility into our cloud security posture, with the ability to enforce policy. Provides a key component for DevSecOps.

    Justin R.

Fugue Keeps Your Infrastructure Compliant and Drift Free

  • October 08, 2020
  • Review verified by G2

What do you like best about the product?
Fugue allows me to quickly identify what parts of our cloud infrastructure are not compliant with our policies, understand why that policy is important, what other components would be affected and then gives me the steps to remediate the problem. Once everything is compliant, Fugue can monitor for drift and automatically correct things that go out of compliance. The product already had a bunch of great pre-made policies for common compliance types, but you can also use an industry standard and open language to create custom rules for any compliance that your company may have. Using the built-in visualizer lets you quickly see how your infrastructure components tie together and how the compliance failure in one area can affect other parts of your product.

Fugue, the company, has been laser focused on cloud compliance for years. Their experience has led to an industry best product for ensuring that your cloud environment is secure and stays that way. Compliance and drift monitoring are critical for anyone running production workloads in the cloud, and Fugue is the absolute best solution to provide those.
What do you dislike about the product?
Fugue has the experience and knowledgable staff to built the best-in-class compliance monitoring and enforcement solution, but sometimes there are features of the product that I would like to take advantage of, which don't yet fit with how I organized my cloud environment many years ago. If I were building our cloud environment today, green field, I would have used current best practices which would better match up with how Fugue expects thing to be laid out. They are always improving the product and soon this won't be a concern at all. Overall this affects very few parts of our usage of Fugue, but it can be frustrating to have to wait for a feature to be rolled out.
What problems is the product solving and how is that benefiting you?
GlobalGiving uses Fugue to ensure that our environment is compliant with PCI, and that nothing changes within our environment which would then violate our policies. Fugue continuously monitors for changes that might cause compliance violations or weaken our security, then alerts our staff so we can fix things before they cause any real problems. We have reduced the number of accidental changes, and completely eliminated changes which were not made through our Infrastructure as Code solution.

    Dale C.

Our experience with Fugue has been fantastic

  • October 06, 2020
  • Review verified by G2

What do you like best about the product?
Fugue has simplified the process of maintaining and demonstrating compliance for our cloud environment, a task that now requires fewer resources and a fraction of the time. With Fugue, we now have access to the full configuration and compliance history of our cloud and can analyze that data and create our own custom reports in ways we haven't been able to before. And the Fugue team has been great to work with and committed to our success with the product.
What do you dislike about the product?
Honestly, there's nothing we dislike.
Like every system, there are a few bugs. But their support team has been very responsive to my engineers, working with them to either correct any bugs or answer any of our questions.
What problems is the product solving and how is that benefiting you?
Our biggest problem was to ensure that our SaaS products hosted on AWS met various security requirements (NIST, ISO, GDPR, SOC-2, etc).
Fugue is able to do this easily.
We are NIST-compliant, and we had a potential customer require us to be ISO-compliant. By going into Fugue and turning on the ISO compliance family, we were able to demonstrate that we were compliant at that level as well. That would have taken a month of engineering time to demonstrate, potentially losing that customer.

    Information Technology and Services

Fugue Compliance tool provides great value and visibility

  • August 26, 2020
  • Review verified by G2

What do you like best about the product?
I’ve been working with the team at Fugue for almost a year now. Their customer service is excellent for working on issues from more of a collaborative approach than just a “Helpdesk” aspect. Ankush and Amelia have been a pleasure to work with and get to know professionally. It is apparent that this company believes in the services they provide. They have accommodated demos, deep dives and they welcome feedback on the product. We have more of a partnership with Fugue than just a vendor relationship. I would highly recommend this product to anyone looking for a great way to scan for Compliance and share these details with teams whether it is SRE, IT or Risk and Compliance focused.
What do you dislike about the product?
Nothing specific at this time - new dashboard reporting coming soon!
What problems is the product solving and how is that benefiting you?
Fugue provides different types of scans related to security industry practices for ease of knowing how to prioritize work for teams.

showing 101 - 110