Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Great product, easy to use
What do you like best about the product?
Effective at mitigating cybersecurity risk
What do you dislike about the product?
Could provide more robust SAST capabilities
What problems is the product solving and how is that benefiting you?
Identifying and visualizing cybersecurity vulnerabilities
- Leave a Comment |
- Mark review as helpful
Snyk - Great idea, poor implementation
What do you like best about the product?
The holistic nature of a developer security suite from IDE to app monitoring is a great idea.
What do you dislike about the product?
Our Developers loathe it. Many false positives on the code scanning, the tool UI is clunky and slow and the post-sales support is truly awful. There are very few support folks at Snyk that actually seem to have any software development experience or the empathy to understand how development teams would use their tool.
What problems is the product solving and how is that benefiting you?
The OSS/SBOM is pretty good.
Benefits of Integrating Synk
What do you like best about the product?
Quickly Identifies the vulnerabilities and classifies them. It identifies the issues as you write the code, which increases security and code quality. The best part is you can get started using it for free.
What do you dislike about the product?
In the free plan, they can increase some resource quota. Also, it would be more helpful if they provided more information on documentation regarding how Synk works in the backend when integrated.
What problems is the product solving and how is that benefiting you?
Firstly it finds vulnerabilities in code which by default increases the security, and secondly, it identifies issues while writing the code, which imporves code quality. Apart from this, I integrated it into the CI/CD pipeline, which allowed me to merge code only if there were no critical issues. These were some of the things that were very beneficial for me.
The tool which helps for DevSecOps
What do you like best about the product?
It ensures our application security at every stage of our application development. Helps to find and fix vulnerabilities in our code. When you install snyk in IDE like Visual studio code , the vulnerabilities get detected at earlier stage.
With Snyk CLI commands , snyk scan also be integrated in CICD pipeline with basic knowledge on snyk.
With Snyk CLI commands , snyk scan also be integrated in CICD pipeline with basic knowledge on snyk.
What do you dislike about the product?
Snyk reported vulnerabilities scna takes more time. It is not free, we have to pay.
What problems is the product solving and how is that benefiting you?
It scans for vulnerabilitis in our product. It helps to safeguard our product against attacks by hackers. Developers does not need to research on security of new library which they integrate on their project which will be taken care by Snyk. Developer can focus on their priorities when snyk tool is integrated on their IDE.
Good for finding Vulnerabilities.
What do you like best about the product?
Its good tool to check Vulnerabilities in project and it also shows category wise vulnerability like critical, high, medium and low by which we can decide which to be fix first and important. And it also provides suggestions of versions in which respective Vulnerabilities has fixed. Also provides plugins for almost very IDE and snyk cli also good by running snyk test in cli it will give details of vulnerabilities in project.
What do you dislike about the product?
In node Js or react it only check yarn.lock file means first we have to install all dependencies then only it will check for all vulnerabilities. Need to work on code quality suggestion part.
What problems is the product solving and how is that benefiting you?
By this tool we are able to fix Vulnerabilities in project and help to secure our product and secure the customer data. And also code quality is improved by using this tool.
AI ML
What do you like best about the product?
check security very quickly, really really fast
What do you dislike about the product?
provider me too error massage, I need quick answer
What problems is the product solving and how is that benefiting you?
container security
Decent product for compliance requirements, not so good for efficient AppSec program
What do you like best about the product?
The best thing there is the ability to plug it in and play with it almost instantly. Integrations are straightforward to manage; Snyk provides you with all the stats you need for your SOC2.
What do you dislike about the product?
Snyk core engine is not very good when it comes down to being able to scan mono repositories. When you have a repo that has multiple languages combine, scan times can be over 1 hour.
What problems is the product solving and how is that benefiting you?
The biggest problem we had back when we first integrated Snyk was to have some visibility into our code, libraries, and IaC configs. Implementing it was beneficial as we saw a clear breakdown of vulnerabilities.
Found hidden XSS vulnerabilities in seconds!
What do you like best about the product?
I love that its VS Code extension simply sits quietly in my project checking things until I do something silly. Then it lets me know that it found security issues that I need to review ASAP.
What do you dislike about the product?
The one thing I really didn't care for (or exepect) is that it creates a report cache in your project root. It probably speeds things up, but I didn't know about it. I kept deleting the file and adding it to .gitignore until I learned what it was. I am still not sure whether it should be committed to source control or not.
What problems is the product solving and how is that benefiting you?
It provides me a tool to do static code analysis on my entire web application code quickly and easily. It does it in a completely unobtrusive manner, staying out of my way until I need it.
Using Snyk as a product to be used by the compamy I work for, and personal projects
What do you like best about the product?
I really like the fact that Snyk is a platform and has support for so many different types of scanning. I really like the IaC scanning. I'm not so experienced in vulnerability scanning on IaC level, but this really feels right.
What do you dislike about the product?
On of the biggest downsides to Snyk is the fact that the Github actions plugins don't support PR commenting out of the box. It supports uploading Sarif files, but this is only available to Github Enterprise users. Adding support for PR comments would come in so handy!
What problems is the product solving and how is that benefiting you?
We, as a company really have a gap in cloud security, we can really benefit from Snyk on filling in that gap.
Easy implementation, straightforward tool
What do you like best about the product?
Implementing Snyk was extremely straightforward. We were able to complete it ahead of schedule and with minimal assistance from the Snyk Team. The app itself is clear and valuable. It doesn't require my team to review extensive documentation or go through application-specific training to understand its use; we were able to hit the ground running.
What do you dislike about the product?
The only thing I can think of is that Snyk does not offer a threat detection component to its product. With the ease of implementation and use, it would be great if we could not only use one tool for both purposes, but we were able to use Snyk for threat detection; the ease and simplicity of use, I feel, would make the program far easier to manage.
What problems is the product solving and how is that benefiting you?
Snyk provides SAST, container scanning, vuln scanning and SCA capabilities. These capabilities allow us to be more productive as a team and increase performance in these areas as the information provided by the tool is easy to act upon.
showing 1 - 10