Cybersecurity startup Snyk Ltd. today announced a number of advancements to its platform that elevate risk-based application security through its artificial intelligence-driven solutions.
The enhancements are designed to streamline the prioritization and remediation of code-based security issues, further enhance secure adoption of generative AI code generation and provide organizations with a more comprehensive understanding of their overall security posture and security operations.
Leading the list of announcements today are new AI-drive code fixes, powered by Snyk’s DeepCode AI, that allow developers to address security vulnerabilities directly within their integrated developer environments as they write code. The feature identifies and prioritizes critical risks in real-time to help developers resolve issues faster with AI-powered recommendations.
The feature uses Snyk’s homegrown large language models to generate fixes, rather than relying on public models, to ensure higher accuracy and enhanced security. In doing so, developers can implement verified solutions with minimal disruption to their workflow.
Snyk Analytics has also been improved to give security leaders deeper insights into their organization’s security posture with enhanced Developer Analytics and Issue Analytics. The tools track which development teams use Snyk tools and highlight the top security challenges faced over a 90-day period. Through an integration with Snowflake AI Data Cloud, the service also allows teams to combine internal security data with contextual analytics to provide a more comprehensive view of application security risks.
The company’s AppRisk feature also gets a look-in with updates that provide a 360-degree view of an application’s security posture by enhancing the Risk Score to include factors like architecture, business value and runtime state. Using the feature, organizations can prioritize vulnerabilities more effectively and focus remediation efforts on the most critical risks, streamlining risk management and helping businesses align their security efforts with both application performance and business objectives.
The last announcement today, enhanced pull request workflows, allows developers to address security concerns directly within their source code managers with pull requests that include detailed summaries of security findings ranked by severity. The enhanced workflows streamline remediation without disrupting workflow, allowing developers to customize pull requests for better alignment with organizational security standards.
“At Snyk, we believe that the future of development will put greater emphasis on building code securely and efficiently,” said Chief Product Officer Manoj Nair. “With our enhanced AI-driven tools… developers and security teams [can] collaborate seamlessly, transforming how they identify and mitigate risks in real time.”