[HN Gopher] Snyk: Find and fix vulnerabilities in open-source de...
       ___________________________________________________________________
        
       Snyk: Find and fix vulnerabilities in open-source dependencies
        
       Author : karlicoss
       Score  : 68 points
       Date   : 2021-02-28 17:23 UTC (5 hours ago)
        
 (HTM) web link (github.com)
 (TXT) w3m dump (github.com)
        
       | ImpressiveWebs wrote:
       | If it helps, I did a paid review of Snyk in a recent issue of my
       | newsletter:
       | 
       | https://mailchi.mp/webtoolsweekly/web-tools-394
       | 
       | It's a good tool, and from what I can tell, the free version is
       | probably enough for most small teams or sole developers. The main
       | benefit of the paid plans seems to be the scanning on private
       | repos and the unlimited tests for 10+ developers. But like I
       | said, the free plan is plenty to work with.
        
       | [deleted]
        
       | d1str0 wrote:
       | How is this different from their paid, as a service version? Are
       | we just paying for easy integration?
        
         | timdorr wrote:
         | It isn't. This is just the CLI client to their API service. All
         | scanning happens on their servers based on data extracted by
         | the CLI.
        
           | Aeolun wrote:
           | I was under the impression there's no scanning as such
           | whatsoever? It just sends a list of your packages and figures
           | out which one should be upgraded based on what they know.
        
       ___________________________________________________________________
       (page generated 2021-02-28 23:00 UTC)