Snyk Vulnerability Intelligence to Integrate into IBM Cloud DevOps Capabilities
October 21, 2020

Snyk Intel vulnerability database will be integrated into IBM Cloud security capabilities to enhance security for enterprise workloads.

IBM is working to integrate Snyk's comprehensive security coverage into its public cloud security capabilities to help developers automatically find, prioritize and fix vulnerabilities in open source dependencies and containers throughout their entire workflow.

Snyk Intel Vulnerability DB is continuously curated by an experienced Snyk Security Research Team to enable teams to be optimally efficient at containing open source security issues, while maintaining their focus on development.

Access to Snyk vulnerability data analysis will be designed to allow IBM Cloud users to easily and quickly identify open source and container vulnerabilities before runtime, and paves the way to automation, remediation and ongoing monitoring.

"Cloud-native development has huge advantages for organizations in terms of efficiency and time to market, but it can be challenging to securely build, deploy and manage applications. The key is to provide automated tools that help teams detect vulnerabilities, analyze security configurations and manage changes at the very outset of development -- rather than discovering security issues at runtime," said Phil Buckellew, GM, IBM Cloud PaaS. "By bringing Snyk's vulnerability insights into our IBM Cloud DevOps capabilities, software engineers can now integrate security at every stage of the development lifecycle, and continue to innovate with speed on the IBM Cloud."

Peter McKay, CEO, Snyk, said: "It's an honor to strengthen our existing Red Hat relationship by becoming a key IBM Cloud security collaborator. Together we will facilitate more enterprises in embracing and benefitting from the developer-first mindset and approach."

The Snyk Intel vulnerability database also integrates into Red Hat CodeReady Dependency Analytics, a hosted service on Red Hat OpenShift that provides vulnerability and compliance analysis for applications, directly from the IDE. The integration enables Red Hat CodeReady Dependency Analytics users to find vulnerabilities as they code. Red Hat OpenShift also incorporates Snyk's developer-first security platform to detect threats and scan workloads running on Red Hat OpenShift clusters.

In addition to IBM Cloud, global leaders including Docker, the Linux Foundation, Rapid7, and Trend Micro, all use the Snyk Intel vulnerability database as their behind-the-scenes security solution to power high-quality, compliant and agile software development.

The integration of Snyk Intel into IBM Cloud DevOps is expected this quarter.

Share this

Industry News

December 02, 2020

Amazon Web Services (AWS), an Amazon.com company, announced Amazon DevOps Guru, a fully-managed operations service that uses machine learning to make it easier for developers to improve application availability by automatically detecting operational issues and recommending specific actions for remediation.

December 02, 2020

Salesforce and Slack Technologies have entered into a definitive agreement under which Salesforce will acquire Slack.

December 02, 2020

Kasten by Veeam announced Kasten K10 v3.0.

December 02, 2020

Mattermost announced the launch of Mattermost Cloud, a new SaaS platform that is designed to optimize collaboration for DevOps teams and privacy-conscious enterprises.

December 01, 2020

CloudBees announced a virtual launch event on December 10 to formally release the first two modules of its Software Delivery Management solution: CloudBees Engineering Efficiency and CloudBees Feature Management.

December 01, 2020

GitOps creator Weaveworks announced the availability of release 2.4 of Weave Kubernetes Platform (WKP).

December 01, 2020

Adaptavist has joined the Sonatype partner program as a Platinum Enterprise Partner.

November 30, 2020

Shipa is open sourcing Ketch, Shipa's deployment engine, under Apache License Version 2.0.

November 30, 2020

Portworx by Pure Storage announced its qualification and support of Portworx Enterprise for Google Cloud's Anthos on bare metal.

November 30, 2020

SnapLogic now supports SaaS contracts in AWS Marketplace, a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on Amazon Web Services (AWS).

November 24, 2020

Red Hat announced new capabilities and features for Red Hat OpenShift, the company's enterprise Kubernetes platform.

November 24, 2020

Sectigo released Chef, Jenkins, JetStack Cert-Manager, Puppet, and SaltStack integrations for its certificate management platform.

November 24, 2020

DataStax released K8ssandra, an open-source distribution of Apache Cassandra on Kubernetes.

November 23, 2020

Spectro Cloud has released a new, self-hosted version of its flagship product, Spectro Cloud.

November 23, 2020

GitLab completed integration of Peach Tech, a security software firm specializing in protocol fuzz testing and dynamic application security testing (DAST) API testing, and Fuzzit, a continuous fuzz testing solution providing coverage-guided testing.