Name: Snyk Open Source
Rating: 4.5 (68 reviews)

Overview

Product Information on Snyk Open Source

Updated 22nd March 2024

What is Snyk Open Source?

Snyk Open Source provides a developer-first SCA solution, to find, prioritize, and fix security vulnerabilities and license issues in open source packages, throughout the software development lifecycle. Application context helps prioritize reachable, deployed, or publicly exposed open source issues that pose the greatest risk to your organization, while guardrails verify that your projects adhere to your security and license policies. SBOM exporting for open source and container projects allows you to meet increasing software transparency regulations, and SBOM testing can scan external tools for vulnerabilities.

Overall experience with Snyk Open Source

Cybersecurity Analyst

<50M USD, Transportation

FAVORABLE

“Security Analysts Find Snyk Useful but Note Missing Task Tracking Capabilities”

4.0

Dec 20, 2025

Snyk has proven quite useful for us to enable code security. Its features and integrations give you the ease of managing code vulnerabilities and mitigation operations.

Director of Product Security

1B - 3B USD, Software

CRITICAL

“Traditional SCA Solution Faces Modern Challenges”

3.0

Oct 8, 2024

More of a traditional SCA, has many gaps and cons when compared to the newer SCA solutions in the market. The developer experience is ok, but got heavily degraded over the last few years.

About Company

Company Description

Snyk specializes in providing security solutions that enable security teams and developers to work together to reduce application risk and speed software delivery. By integrating application security into developers' workflows, Snyk aims to help organizations secure their applications from code creation to cloud deployment. The end-to-end view of applications gives developers and security the shared perspective to improve security posture, while enhancing developers' productivity, preventing issues early in the development cycle, and allowing for the fastest response when security events like zero days occur.

Company Details

Company type

Private

Year Founded

2015

Head office location

Boston, United States

Number of employees

501 - 1000

Website

https://snyk.io/what-is-snyk/

Do You Manage Peer Insights at Snyk?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Snyk Open Source

Performance of Snyk Open Source Across Market Features

Snyk Open Source Likes & Dislikes

The integration with BitBucket. Makes it very useful for me as a security analyst to communicate with developers and point issues in a way that developers will also understand

Easy to deploy, results are pretty accurate and customizable for most needs related to vulnerabilities and license checks. Also (I think) that they support the highest number of technologies when compared to other SCA solutions in the market.

Its ease of use and speed to get results for developers. Its very simple yet robust with how granular you can configure your scan their their CLI option.

The fact that it offers no possibility to follow up on tasks within the platform. Additionally, it is not possible to see which projects are archived or disabled and which are still being worked on by devs.

When talking about large scale, they had many issues with the integration to GitHub such as rate limit issues, failing scans, etc. The product is also unaware of the code context without a runtime agent and its reachability checks aren't good enough.

Snyk Open Source does not support scanning binary files such as .jar files. This would allow the option to scan at source code and at finished/compiled artifact to provide validation of scanning results.

Top Snyk Open Source Alternatives

4.4

(111 Ratings)

4.5

(16 Ratings)

(13 Ratings)

View All Alternatives

Peer Discussions

Snyk Open Source Reviews and Ratings

Showing data for 12 ratings and reviews for Software Supply Chain Security market. View all 68 ratings and reviews across markets for a complete picture.

4.2

(12 Ratings)

Rating Distribution

5 Star: 50%
4 Star: 25%
3 Star: 25%
2 Star: 0%
1 Star: 0%

Customer Experience

Evaluation & Contracting

3.9

Integration & Deployment

4.7

Service & Support

4.3

Product Capabilities

4.4

Filter Reviews

Sort By:

Most helpful

Last 12 Months

Star Rating

Reviewer Type

Reviewer's Company Size

Reviewer's Industry

Reviewer's Region

Reviewer's Job Function

Cybersecurity Analyst
<50M USD
Transportation
Review Source
Security Analysts Find Snyk Useful but Note Missing Task Tracking Capabilities
4.0
Dec 20, 2025
Snyk has proven quite useful for us to enable code security. Its features and integrations give you the ease of managing code vulnerabilities and mitigation operations.
Senior Cybersecurity Engineer
1B-10B USD
Healthcare and Biotech
Review Source
Snyk Open Source Review
5.0
Nov 4, 2024
Snyk Open Source provides a more precise compilation of dependencies during the build process than other products I have used in the past. Its integration in the CI Pipeline and IDE offers results at the time of commit or prior to the code being pushed to remote repositories. It provides the developer with the information needed to remediate to give save time on the backend of a release cycle.
LEAD ENGINEER
10B+ USD
Banking
Review Source
A Comprehensive Examination of a Maven-Based Solution Experience
5.0
Oct 11, 2024
Excellent experience from start to end. We started on the free tier to trial the product on our application, moving from our previous open source maven based solution. Setup was simple, maintenance was almost non-existent and the pre-compiled packages for certifications/etc made the supplier onboarding process much more streamlined.
Director of Product Security
1B-10B USD
Software
Review Source
Traditional SCA Solution Faces Modern Challenges
3.0
Oct 8, 2024
More of a traditional SCA, has many gaps and cons when compared to the newer SCA solutions in the market. The developer experience is ok, but got heavily degraded over the last few years.
Principal Security Engineer
1B-10B USD
Retail
Review Source
Evaluating Snyk's Thorough Issue Detection and Challenging Reporting
3.0
Jul 3, 2024
Snyk's SCA detection capabilities are very good, however it feels like they have broadened their product suite too quickly and so lack some depth in their bread and butter product features like SCA and other fundamental elements like reporting and APIs

Showing Result 1-5 of 12

Recommended Gartner Research

Market Guide for Software Supply Chain Security

Snyk Open Source

Overview

Product Information on Snyk Open Source

What is Snyk Open Source?

Snyk Open Source Pricing

Snyk Open Source Product Images

Overall experience with Snyk Open Source

“Security Analysts Find Snyk Useful but Note Missing Task Tracking Capabilities”

“Traditional SCA Solution Faces Modern Challenges”

About Company

Company Description

Company Details

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Snyk Open Source

Performance of Snyk Open Source Across Market Features

Snyk Open Source Likes & Dislikes

Top Snyk Open Source Alternatives

1. Mend

2. Veracode

3. Black Duck Software Composition Analysis

Peer Discussions

Snyk Open Source Reviews and Ratings

4.2

(12 Ratings)

Rating Distribution

Customer Experience

Product Capabilities

Security Analysts Find Snyk Useful but Note Missing Task Tracking Capabilities

Snyk Open Source Review

A Comprehensive Examination of a Maven-Based Solution Experience

Traditional SCA Solution Faces Modern Challenges

Evaluating Snyk's Thorough Issue Detection and Challenging Reporting

Recommended Gartner Research