On SnykCon, the editor Snyk presented the evolutions of its code security platform including support for C #, Ruby, PHP and Go languages, added to its static test tool Snyk Code. Snyk Apps now make it possible to integrate the platform’s functionalities into specific workflows.
What changes should be made between developers and IT security teams to improve the secure development of applications? How to build an AppSec program? Understand the security supply chain for developers? Three topics among those discussed at SnykCon, from October 5 to 7, by Snyk, supplier of tools for securing code, dependencies, containers and infrastructure as a code. These presentations and the technical sessions are accessible on the event website, during which the Boston-based publisher also presented developments on its products.
Snyk Apps based on the Snyk v3 API
On the Infrastructure as Code part, Snyk has advanced the detection of configuration problems on Kubernetes in Terraform code, with compatibility for AWS, Azure and GCP. As for the Snyk API, v3, based on the latest version of OpenAPI, is three times faster, says the publisher, and it extends to new terminals.
During SnykCon, the publisher also announced the Snyk Apps which allow the platform’s functionalities to be integrated into specific workflows. For example, by creating an application that disseminates the results of Snyk’s security tests in an incident management tool, the publisher exposes. Snyk Apps rely on Snyk API v3 and OAuth 2.0 to install granular permissions.