Snyk Acquires DeepCode
September 29, 2020

Snyk signed an agreement to acquire DeepCode, a provider of real-time semantic code analysis powered by AI.

The deal is expected to close within two months, following satisfaction of customary pre-closing conditions.

DeepCode's technology will advance Snyk's comprehensive security platform, including open source security, container security and infrastructure as code security, using integrated machine learning-based intelligence to more quickly identify vulnerabilities and ensure developers have a superior level of accuracy.

Today, Snyk offers a developer security experience that enables companies to keep up with the modern pace of development, accelerated by the rapid adoption of DevOps and cloud native technologies. To solve this growing market challenge, Snyk's platform supports more than 1.5M developers worldwide in building software securely throughout the development process, while providing the security and operations teams with the visibility, accuracy and control they need. The acquisition of DeepCode comes on the heels of Snyk's September 9th announcement of a $200 million Series D investment and valuation of $2.6B.

DeepCode is an ETH Zurich spin-off founded by machine learning and programming languages researchers. With the acquisition of DeepCode, Snyk's technology platform will be significantly advanced by integrating and building on DeepCode's AI engine, which includes:

- Sophisticated interpretable machine learning semantic code analysis. The technology scans code 10-50x faster than alternatives, enabling real-time workflows within the development process, and dramatically reduces both false negatives and false positives using a custom machine learning platform that is able to quickly learn from huge volumes of code.

- An exceptional developer UX unlocked via a custom, next-generation Datalog solver that allows for high precision semantic code analysis in real time. This technology enables code scanning at the IDE and git level so that developers can seamlessly integrate scanning into their development process in real-time rather than adding interruptive steps.

"Traditional security tools are fatally flawed in today's fast-paced development environment," said Peter McKay, CEO of Snyk. "They are too slow for developers to use in their daily work, and they result in too many false positives, often leading to wasted time or overlooked threats. DeepCode's AI engine brings a level of speed and accuracy to Snyk's technology platform that will give customers a level of security intelligence they've never had before. Additionally, we now can apply those capabilities to the proprietary code written by developers, extending the Snyk platform's coverage for securing cloud native applications."

"Core to our focus at DeepCode was creating a sophisticated AI platform that blends advanced machine learning algorithms and semantic analysis which makes scanning of code lightning-fast and incredibly accurate," said Boris Paskalev, CEO of DeepCode. "By leveraging Snyk's security expertise and comprehensive vulnerability database to train our engine, our accuracy will become better even faster, and we can reduce false positives to near-zero. This provides massive productivity benefits for developers and security teams and overall risk reduction."

Share this

Industry News

October 22, 2020

Puppet announced Puppet Comply, a new product built to work with Puppet Enterprise aimed at assessing, remediating, and enforcing infrastructure configuration compliance policies at scale across traditional and cloud environments.

October 22, 2020

Harness announced two new modules: Continuous Integration Enterprise and Continuous Features.

October 22, 2020

Render announced automatic preview environments which are essential for rapid and collaborative development of modern applications.

October 21, 2020

Conducto is launching a toolkit for simplifying complex CI/CD and data science pipelines, having raised $3 million in seed funding led by Jump Capital.

October 21, 2020

Snyk Intel vulnerability database will be integrated into IBM Cloud security capabilities to enhance security for enterprise workloads.

October 21, 2020

Accurics announced $20 million across seed and series A financing raised in the past six months, with Intel Capital leading the Series A and ClearSky leading the seed.

October 20, 2020

Splunk announced the Splunk Observability Suite, the most comprehensive and powerful combination of monitoring, investigation, and troubleshooting solutions designed to help organizations become cloud-ready and accelerate their digital transformation.

October 20, 2020

Tricentis announced Vision AI, the core technology that will now power Tosca.

October 20, 2020

MuseDev has extended its code analysis platform to deliver bug reports via Github's code scanning UI.

October 20, 2020

Digital Shadows announced the ability to detect exposed access keys.

October 19, 2020

StackRox and Robin.io announced a new partnership bringing together Robin’s application-focused approach to Kubernetes data management with StackRox’s Kubernetes-native security and compliance capabilities.

October 19, 2020

PubNub announced new Chat UI Kits to streamline chat development.

October 19, 2020

Secure Code Warrior announced support for GitHub’s new code scanning functionality in conjunction with a new collaboration with Snyk.

October 15, 2020

Couchbase announced version 2.8 of Couchbase Lite and Couchbase Sync Gateway for mobile and edge computing applications.

October 15, 2020

Kong unveiled the private beta release of Kong Konnect, a full-stack platform for cloud native applications delivered as a service.