[HN Gopher] Snyk: Find and fix vulnerabilities in open-source de... ___________________________________________________________________ Snyk: Find and fix vulnerabilities in open-source dependencies Author : karlicoss Score : 68 points Date : 2021-02-28 17:23 UTC (5 hours ago) (HTM) web link (github.com) (TXT) w3m dump (github.com) | ImpressiveWebs wrote: | If it helps, I did a paid review of Snyk in a recent issue of my | newsletter: | | https://mailchi.mp/webtoolsweekly/web-tools-394 | | It's a good tool, and from what I can tell, the free version is | probably enough for most small teams or sole developers. The main | benefit of the paid plans seems to be the scanning on private | repos and the unlimited tests for 10+ developers. But like I | said, the free plan is plenty to work with. | [deleted] | d1str0 wrote: | How is this different from their paid, as a service version? Are | we just paying for easy integration? | timdorr wrote: | It isn't. This is just the CLI client to their API service. All | scanning happens on their servers based on data extracted by | the CLI. | Aeolun wrote: | I was under the impression there's no scanning as such | whatsoever? It just sends a list of your packages and figures | out which one should be upgraded based on what they know. ___________________________________________________________________ (page generated 2021-02-28 23:00 UTC)