Skip to content

ServiceNow integrates Snyk to decelerate open supply code failures

Les utilisateurs de ServiceNow Vulnerability Response auront dsormais acces au produit d’analyse de code open supply de Snyk pendant leur processus de dveloppement.

The failures within the open supply tasks might threaten the safety of the functions. There are additionally instruments like Snyk Open Supply, a software program evaluation platform (Software program Composition Evaluation, SCA) able to find, hierarchising and correcting safety vulnerabilities and license issues in open supply dependencies. This answer shall be désormais accessible aux utilisateurs de ServiceNow Vulnerability Response.

The Snyk service relies on an ensemble of public sources, from folks from the group of builders, from unique inquiries from consultants, from apprenticeship machines and from AI supervised. Member of Safety Operations, ServiceNow Vulnerability Response has the capabilities of flux de travail et d’automation of the platform Now aux données d’analyse des vulnérabilités coming from different fournisseurs, which embrace dorénavant les rapports de Snyk.

What impression pour les utilisateurs?

“The mixing permits for an efficient DevSecOps collaboration to be able to strengthen the safety of corporations”, declared Manoj Nair, Chief Product Officer of Snyk, in a press release. This integration is accessible for Vulnerability Response shoppers. Elle est accesible aux shoppers communs de AppVR de ServiceNow et aux abonnés Open Supply SCA de Snyk qui disposent de droits API. La platforme évite aux développeurs de revenir en arrière dans leur développement pour détecter et sécuriser les vulnérabilités. Due to the superior instruments for analyzing software program elements, she contributes to my means to generate the safety of free software program.

“Grâce à ces instruments, les développeurs peuvent surveiller en permanence leurs projets en cours et identifier et correctir les vulnérabilités de temps réel, tout en évaluant routinely la conformité aux politiques réglementaires”, declared M. Nair. « Les workflows automatisés et les suggestions permettent aux desveloppeurs de se préoccuper de la sécurité dès le début, ce qui renforce lastly la stance de sécurité de l’entreprise », at-il ajouté. « With the combination of Snyk, the safety groups can collaborate with the builders and managers and répondre de manière centralized aux vulnérabilités open supply by the functions », declared by Lou Fiorello, VP and GM of safety merchandise Examine ServiceNow, in a communication.

25 million {dollars} put money into Snyk

Within the framework of a collection G financing, ServiceNow additionally invests 25 million {dollars} in Snyk, bringing Snyk’s international investments to 196.5 million {dollars}. Questioned a couple of attainable hyperlink between the funding and the combination, Snyk merely acknowledged that the ServiceNow funding in Snyk marks a change within the trade that s’éloignait des pratiques de cybersécurité dépassées pour s’orienter de plus en plus vers une securité centere sur le développeur. “The mixing of Snyk in ServiceNow Vulnerability Response is a unique factor from these practices, and the supply of Snyk on one of the vital well-liked IT platforms makes DevSecOps extra accessible to corporations,” declared Manoj Nair.

On the similar time, Snyk acquired ce financing from collection G, the corporate licensed 14% of its belongings, involving the division of 198 staff in Israël et aux États-Unis. As reported by Globes, ces licenciements ont eu lieu quelques mois seulement après que la société a licencié 30 empleés. On February 2022, Snyk introduced the acquisition of the corporate Fugue, specializing in safety and cloud compliance. On the time, Snyk had declared in a press release that Fugue’s Unified Coverage Engine was uniquely in a position to reveal the place of the cloud in its configuration code on the base of a Seoul political ensemble, to be able to gérer la conformité et la sécurité all au lengthy du cycle de vie du développement logiciel (SDLC).

Leave a Reply

Your email address will not be published. Required fields are marked *