Name: Snyk Open Source
Rating: 4.5 (69 reviews)

Overview

Product Information on Snyk Open Source

Updated 22nd March 2024

What is Snyk Open Source?

Snyk Open Source provides a developer-first SCA solution, to find, prioritize, and fix security vulnerabilities and license issues in open source packages, throughout the software development lifecycle. Application context helps prioritize reachable, deployed, or publicly exposed open source issues that pose the greatest risk to your organization, while guardrails verify that your projects adhere to your security and license policies. SBOM exporting for open source and container projects allows you to meet increasing software transparency regulations, and SBOM testing can scan external tools for vulnerabilities.

Overall experience with Snyk Open Source

IT Security & Risk Management Associate

Gov't/PS/ED <5,000 Employees, Education

FAVORABLE

“Continuous Code Scanning and Security Screening Features with Good Reporting”

4.0

Jan 15, 2026

Snyk is used to continuously scan our code base as well as providing security screening by means of the Pull Request Checks. The interface and API provide a great way to manage vulnerability issues.

Director of Product Security

1B - 3B USD, Software

CRITICAL

“Traditional SCA Solution Faces Modern Challenges”

3.0

Oct 8, 2024

More of a traditional SCA, has many gaps and cons when compared to the newer SCA solutions in the market. The developer experience is ok, but got heavily degraded over the last few years.

About Company

Company Description

Snyk specializes in providing security solutions that enable security teams and developers to work together to reduce application risk and speed software delivery. By integrating application security into developers' workflows, Snyk aims to help organizations secure their applications from code creation to cloud deployment. The end-to-end view of applications gives developers and security the shared perspective to improve security posture, while enhancing developers' productivity, preventing issues early in the development cycle, and allowing for the fastest response when security events like zero days occur.

Company Details

Company type

Private

Year Founded

2015

Head office location

Boston, United States

Number of employees

501 - 1000

Website

https://snyk.io/what-is-snyk/

Do You Manage Peer Insights at Snyk?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Snyk Open Source

Deciding Factors: Snyk Open Source Vs. Market Average

Performance of Snyk Open Source Across Market Features

Snyk Open Source Likes & Dislikes

The CLI scanning tools are very powerful. The UI is intuitive and has very good reporting dashboards. The API is powerful and can be used for data extraction. There are multiple integrations available such as Jira, GitHub, BitBucket, Artifactory.

Easy to deploy, results are pretty accurate and customizable for most needs related to vulnerabilities and license checks. Also (I think) that they support the highest number of technologies when compared to other SCA solutions in the market.

The integration with BitBucket. Makes it very useful for me as a security analyst to communicate with developers and point issues in a way that developers will also understand

Sometimes, when importing repos into Snyk, the import fails but the reason is not obvious. This can be due to dependencies not being accessible - for example, they are in Artifactory - or because the version of the tools (python, java) or package manager (e.g. npm, maven) used in the repo don't match the versions used by Snyk.

When talking about large scale, they had many issues with the integration to GitHub such as rate limit issues, failing scans, etc. The product is also unaware of the code context without a runtime agent and its reachability checks aren't good enough.

The fact that it offers no possibility to follow up on tasks within the platform. Additionally, it is not possible to see which projects are archived or disabled and which are still being worked on by devs.

Top Snyk Open Source Alternatives

Peer Discussions

Snyk Open Source Reviews and Ratings

Recommended Gartner Insights

Gov't/PS/Ed

Education

Review Source

Continuous Code Scanning and Security Screening Features with Good Reporting

Cybersecurity Analyst

<50M USD

Transportation

Security Analysts Find Snyk Useful but Note Missing Task Tracking Capabilities

Dec 20, 2025

Snyk has proven quite useful for us to enable code security. Its features and integrations give you the ease of managing code vulnerabilities and mitigation operations.

It Security & Risk Management Associate

50M-1B USD

Real-Time AI Scanning Enhances Snyk’s Developer Experience and Issue Resolution

5.0

Apr 3, 2026

Snyk provides a very user friendly and easy to integrate developer centric SAST, open source, IaC solution to find the issues and fix them. With AI engines to perform real-time scanning, it is one of the best tools on the market.

Software Development Manager

Software

Heavily easy to take into use

Nov 17, 2025

This is a truly developer friendly tool, very easy to onboard and get results

PRINCIPAL SOFTWARE ENGINEER

IT Services

Automatic Alerts Enable Fast Response to New Vulnerabilities in Dependencies

Oct 1, 2025

Easy to set up (just install scanner, authenticate, run monitor), UI is informative and easy to read. Automatic mails with alerts help to address issues fast