Vulnerability InsightsLog4j 2.15 vulnerability CVE-2021-45046 upgraded to a critical severity arbitrary code executionDecember 17, 2021
Vulnerability InsightsLog4Shell in a nutshell (for non-developers & non-Java developers)December 15, 2021
Vulnerability InsightsThe Log4j vulnerability and its impact on software supply chain securityDecember 13, 2021
Vulnerability InsightsLog4j vulnerability explained: Prevent Log4Shell RCE by updating to version 2.17.1December 10, 2021
Open Source SecuritySnyk Open Source adds beta C/C++ security scanning for unmanaged OSSDecember 8, 2021
Open Source SecuritySecuring your open source dependencies with the Snyk Visual Studio Code extensionNovember 23, 2021
Open Source SecurityAnnouncing automated fixes for vulnerabilities in .NET dependenciesNovember 17, 2021
Vulnerability InsightsExploring extensions of dependency confusion attacks via npm package aliasingNovember 4, 2021
Vulnerability InsightsJavaScript type confusion: Bypassed input validation (and how to remediate)November 3, 2021
Open Source SecuritySnyk joins OpenSSF: Tackling open source supply chain security with a developer-first approachOctober 19, 2021
Vulnerability InsightsSnykCon 2021 recap #2: Supply chain security, the future of cybersecurity, automation as an enabler, and moreOctober 8, 2021
Open Source SecuritySnykCon 2021 recap #1: Snyk Learn, Snyk Apps, developer security, people hacking, security champions, and moreOctober 7, 2021
Open Source SecuritySnyk sponsoring 2021 Open Source Summit by the Linux FoundationSeptember 16, 2021
Vulnerability InsightsDetect and prevent dependency confusion attacks on npm to maintain supply chain securitySeptember 13, 2021
Open Source SecurityPlugins to put Node.js application security and observability in your IDEAugust 23, 2021
