Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Snyk has helped us catch bugs and vulnerabilities, while being extremely easy to use
What do you like best about the product?
I really like the CLI and the web dashboard. The dashboard helps give an overview of all issues with the option of diving deeper into each one. The CLI is a quick way to test for vulnerabilities in real time while writing code. My favorite feature is the code analysis tool, which helps point out vulnerabilities in my own business logic. I haven't seen any other tool that analyses my logic as well as Snyk.
What do you dislike about the product?
I have had problems with controlling which projects I want Snyk to analyze. For example, I would like to ignore all Dockerfile vulnerabilities, but I haven't found to way to do that easily. The "Usage" tab in settings is almost what I want, but it only gives file/project-level control, whereas I would want to ignore specific filetypes or repositories. Also, the .dccache file which is generated by VS Code extension is a bit annoying, and it sometimes gets in the way when I just want to quickly analyze some project.
What problems is the product solving and how is that benefiting you?
The main problem Snyk helps us with is writing safer code. The code analysis tool is absolutely incredible, it helps us notice problems in our business logic that we wouldn't have caught ourselves. Snyk also keeps our dependencies up-to-date, so updating major versions is a smaller burden. Keeping packages up-to-date also protects against future vulnerabilities in our dependency tree.
- Leave a Comment |
- Mark review as helpful
Python requirements.txt limitation for Git integration
What do you like best about the product?
Setup and integration was straightforward. both CLI and Git integration was smooth
What do you dislike about the product?
Snyk has been a pleasure to use. setup and integration was a breeze. For our use case, the only downside was the fact that the Git(gitlab) integration doesn't support python language use of requirements.txt. This meant we had to rewrite our piplelines to use the CLI version. it was a bit of an inconvenience.
What problems is the product solving and how is that benefiting you?
vulnerability checking. it does all the hard work for you
Solid tool for vulnerability scanning
What do you like best about the product?
Easily review the most impactful security issues across all the projects managed through Snyk.
What do you dislike about the product?
Each vulnerability should have a link to the generated PR/MR so it would be easy to review the status of a vulnerability.
What problems is the product solving and how is that benefiting you?
Vulnerability scanning. This helps us with our efforts for SOC Type II compliance.
Snyk is a great tool
What do you like best about the product?
Integrations with Bitbucket and Jira
Clean user interface
Clean user interface
What do you dislike about the product?
Unable to mass delete CLI projects must like imported repos
What problems is the product solving and how is that benefiting you?
Software vulnerabilities and potential licensing issues
Great and versatile SCA tool for dev and ops.
What do you like best about the product?
We can finally identify security vulnerabilities during the development and fix them before we move forward.
The result is clear and can save you time with proactive feedback and money by saving computational resources used by CI pipelines.
The result is clear and can save you time with proactive feedback and money by saving computational resources used by CI pipelines.
What do you dislike about the product?
Snyk Portal may require some attention to UX as many have already mentioned.
There are many settings enabled by default that should be asked before starting using the service.
I would suggest some sort of skippable pre-configuration view (like a wizard), so users can have an idea of what features are available/enabled.
There are many settings enabled by default that should be asked before starting using the service.
I would suggest some sort of skippable pre-configuration view (like a wizard), so users can have an idea of what features are available/enabled.
What problems is the product solving and how is that benefiting you?
I can shift sec during the development process, which decreases the roundtrip when discovering new vulnerabilities during releases.
I am in the process of bringing SNYK into our organization in order to secure code
What do you like best about the product?
IDE integration
Scanning for vulns and misconfiguration with details and remediation suggestions as well as references.
Scanning for vulns and misconfiguration with details and remediation suggestions as well as references.
What do you dislike about the product?
Bundle Pricing can be a bit high. More options outside of bundles for pricing would be appreciated.
What problems is the product solving and how is that benefiting you?
SNYK is bringing security right to the IDE and containers where DevOps perform their work and helping integrate Sec in DevSecOps.
Recommendations to others considering the product:
Take a look at the demo and try the community version. I already have developer friends that are really enjoying the community version.
Constant security and shifting left with Snyk
What do you like best about the product?
Snyk can integrate with GitHub and constantly scan certain repositories for vulnerabilities and not just when new code is pushed to the repository, allowing the application to be secure even when it is not being worked upon. Excellent UI with great reporting and filtering capabilities, that is easy and intuitive to use. Snyk can automatically create pull requests for fixing fixable vulnerabilities and allowing the code owner to fix issues fast and easily.
What do you dislike about the product?
Snyk lacks the ability to export the data regarding the vulnerabilities to an external vendor such as Datadog, allowing the customer to graph, alert and process the data. Another great addition to a great tool would be the ability to know when the vulnerability was introduced or the release affecting the vulnerability.
What problems is the product solving and how is that benefiting you?
We use the GitHub integration and scan our Docker images during CI to find vulnerabilities before pushing to production. We also receive weekly emails regarding the security posture of our applications. Using Snyk, we are able to catch vulnerabilities and fix them easily with the help of Snyk's integrations.
Inconsistent reports, odd UX, incorrect documentation, time-sink for developers
What do you like best about the product?
Not sure I can think of anything nice to say here.
What do you dislike about the product?
The reports are often flat-out incorrect (particularly w/ licensing detections). Between that and the incredible inconsistencies between what the web app and CLI reports (the docs say the CLI should be more accurate/show more, but the opposite is true), and some very annoying/insanely unintuitive UX design choices, I have zero trust in what Snyk reports, and it's a complete pain to work with. And I know I'm not alone in this opinion, as I've tried before to assume that it's just my own experience, yet time and again I'm proven wrong on this point.
What problems is the product solving and how is that benefiting you?
To be fair, it has accurately reported on a couple of actual security vulnerabilities which we were able to address. Otherwise, it seems to cause more problems than it solves (and wastes both my own and the company's time and money as a result).
Snyk Anytime... Any Day !!!
What do you like best about the product?
Snyk is the single source of truth for Vulnerabilities in the composition of your software . The easy to use interface , the depth of information and the reach of scans simply make it Awesome...
What do you dislike about the product?
IT should list out issues under two categories , one which are fixable and the other group for which no fix is available , this will improve the user focus to a much larger extent.
What problems is the product solving and how is that benefiting you?
With Snyk we are providing a level of transparency on the vulnerability profile of software composition , this information is provided with evidence and with all the technical information related to the vulnerability. This improves the decision-making ability of the product owners to prioritize fixes when the resource bucket is limited.
Recommendations to others considering the product:
All i will say is that it is the best in the market today and is a one-stop solution to all your needs around supply chain security and software composition analysis.
Best tool for DevSecOps
What do you like best about the product?
Simple and straightforward.
Easy to use.Simple way integration clearly mention source and sink and give proper remediation.
It is helpful for developer and security engineer
Easy to use.Simple way integration clearly mention source and sink and give proper remediation.
It is helpful for developer and security engineer
What do you dislike about the product?
Need improvement in report creation.
Proper executive and technical report needed.
Some time getting problem in ci/cd pipelines from Jenkin.
Need proper step by step guide
Proper executive and technical report needed.
Some time getting problem in ci/cd pipelines from Jenkin.
Need proper step by step guide
What problems is the product solving and how is that benefiting you?
Easy to find accurate bugs from code and dependency.
Now it is compatible for containers orchestration cloud.
Problem solve like fixed lots of dependency issue and upgrade lots of code after Snyk scan.
Now it is compatible for containers orchestration cloud.
Problem solve like fixed lots of dependency issue and upgrade lots of code after Snyk scan.
Recommendations to others considering the product:
This is the best tool for DevSecOps. Easy to use and iron this out by analysis.
We are completely satisfied with services.
We love to use and give efficient result .
Our client also happy due to Snyk. Now Snyk our family.
This is our original feeling for Snyk.
We are completely satisfied with services.
We love to use and give efficient result .
Our client also happy due to Snyk. Now Snyk our family.
This is our original feeling for Snyk.
showing 61 - 70