Snyk

Snyk is an automated code quality and vulnerability monitoring tool that helps maintain the security of applications. Snyk continuously monitors vulnerabilities within package and software dependencies. Native support for CircleCI allows for semi-automated fix deployment, as Snyk can create a pull request for updates to affected dependencies. Support for micro-services means that the Blaze application can be kept vulnerability-free, even when deployed across service providers.

Snyk is used in Blaze to track dependency health and trigger updates across all package layers, from core application modules to individual plugins, ensuring that platform security is upheld at all times.

License: Paid subscription to service