Sold by: SnykÂ
Deployed on AWS
Quick Launch
The Snyk Runtime Sensor enables teams to better manage & prioritize application risk. Insights collected by the Snyk Runtime Sensor are incorporated into Snyk AppRisk - the developer-first ASPM platform designed to help AppSec teams better build, manage and scale their developer-first AppSec program with Snyk.
Overview
The Snyk Runtime Sensor is deployed as a Kubernetes DaemonSet. Leveraging eBPF, it extracts information about application behavior in runtime into Snyk AppRisk - the developer-first ASPM platform - to improve visibility into application risk and drive more efficient remediation and prioritization workflows.
Highlights
- Provides intelligence on applications in runtime to facilitate enhanced application discovery and improved vulnerability prioritization in Snyk AppRisk.
- Collects various runtime risk factors such as deployed images, loaded packages, etc.
- Supported in the following environments: * Kubernetes 1.19 or newer * Privileged access - either root, or the following Linux capabilities: BPF, PERFMON, SYS_RESOURCES, DAC_READ_SEARCH, SYS_PTRACE, NET_ADMIN * Cluster nodes must support BTF * Language support - Go, Java (8+), .NET (2.0.9+), Node.js (10+), Python (3.6+)
Details
Sold by
Delivery method
Supported services
Delivery option
Snyk Runtime Sensor Helm Chart
Snyk Runtime Sensor Add-on
Latest version
Operating system
Linux
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Quick Launch
Leverage AWS CloudFormation templates to reduce the time and resources required to configure, deploy, and launch your software.
Pricing
This product is available free of charge. Free subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
Free product - no refund policy in place.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Snyk Runtime Sensor Add-on
Supported services: Learn moreÂ
- Amazon EKS
EKS add-on
An add-on is software that provides supporting operational capabilities to Kubernetes applications but isn't specific to the application. This includes software like observability agents or Kubernetes drivers that allow the cluster to interact with underlying AWS resources for networking, compute, and storage. Add-on software is typically built and maintained by the Kubernetes community, cloud providers like AWS, or third-party vendors. Amazon EKS add-ons provide installation and management of a curated set of add-ons for Amazon EKS clusters. All Amazon EKS add-ons include the latest security patches and bug fixes, and are validated by AWS to work with Amazon EKS. Amazon EKS add-ons allow you to consistently ensure that your Amazon EKS clusters are secure and stable and reduce the amount of work that you need to do to install, configure, and update add-ons.
Version release notes
Performance enhancements
Additional details
Usage instructions
Obtain your Snyk Group ID and service account token and follow these steps: https://docs.snyk.io/integrate-with-snyk/snyk-runtime-sensor#aws-eks-deploymentÂ
Support
Vendor support
Snyk: Developer Security Platform Standard Support: Self-serve resources designed to help you quickly and successfully derive value throughout your security journey with Snyk. As part of any Snyk plan, we offer live sessions, on-demand videos, downloadable content, hands-on practice and other self-serve resources designed to help you quickly and successfully derive value throughout your security journey with Snyk. Find all of this content in the Snyk User Hub. https://snyk.io/user-hub/Â Submit a ticket:
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Snyk is a developer security platform that enables application and cloud developers to secure their whole application, finding and fixing vulnerabilities from their first lines of code to their running cloud.
Security visibility and control for the entire software lifecycle, from code to cloud.
The only platform to give you end-to-end visibility, security, and control
for automating delivery of trusted releases.
Achieve SOC 2 Type II audit readiness in just 4 weeks.
Customer reviews
3.8
4 ratings
4 AWS reviews
|
135 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Abhishek-Goyal
Improves security posture by actively reducing critical vulnerabilities and guiding remediation
Reviewed on Nov 15, 2025
Review provided by PeerSpot
What is our primary use case?
I typically use Snyk for checking the security and vulnerabilities in my repositories.
Recently, I have used Snyk in one of my repositories for security and vulnerability checks, providing comprehensive knowledge about the repository, including what it does and where the security vulnerabilities are located.
I am using Snyk for the first time and did not use any vulnerability scanning solution before this. I was previously doing Red Hat vulnerability scanning locally for dependency checks, which was not what I wanted.
What is most valuable?
Snyk's main features include open-source vulnerability scanning, code security, container security, infrastructure as code security, risk-based prioritization, development-first integration, continuous monitoring and alerting, automation, and remediation. The best features I appreciate are the vulnerability checking, vulnerability scanning, and code security capabilities, as Snyk scans all open-source dependencies for known vulnerabilities and helps with license compliance for open-source components.
Snyk integrates into IDEs, allowing issues to be caught as they appear in the code dynamically and prioritizes risk while providing remediation advice.
Snyk provides actionable remediation advice on where vulnerabilities can exist and where code security is compromised, automatically scanning everything and providing timely alerts.
Snyk has positively impacted my organization by improving the security posture across all software repositories, resulting in fewer critical vulnerabilities, more confidence in overall product security, and faster security compliance for project clients.
Snyk has helped reduce vulnerabilities significantly. Initially, the repository had 17 to 31 critical and high vulnerabilities, but Snyk has helped manage them down to just five vulnerabilities, which are now lower and not high or critical.
What needs improvement?
Although Snyk is strong, sometimes it flags vulnerabilities that are not reachable, not exploitable, and not relevant to a project. Better reachability analysis and context-aware scanning could improve this.
Snyk could benefit from a more optimized scanning engine and incremental scan caching.
For how long have I used the solution?
I have been using Snyk for the previous one year.
What do I think about the stability of the solution?
I have no issues with Snyk's reliability; it is stable.
What do I think about the scalability of the solution?
Snyk is very scalable and can handle my organization's growth and changing needs, allowing us to scale up to many stages and reduce developer costs, especially when we have fewer developers.
How are customer service and support?
I never reached out to customer support because I never encountered any issues.
How would you rate customer service and support?
Negative
Which solution did I use previously and why did I switch?
I considered SonarQube in detail before choosing Snyk.
How was the initial setup?
What was our ROI?
I can see that Snyk saves the costs of hiring security developers for vulnerability scanning and security checks, as that responsibility is now managed by Snyk.
What's my experience with pricing, setup cost, and licensing?
Pricing is good for small teams, with a free tier or low-usage pricing available, and the licensing experience is straightforward but not very flexible.
What other advice do I have?
My advice for others looking into using Snyk is that if you are starting a repository that is free from vulnerabilities and security checks, Snyk is a good option. It automatically provides advice on how to improve for reducing vulnerabilities and security issues, allowing for easy removal of vulnerabilities. You can use it for a free trial, and if it impacts your organization positively, you can consider further usage.
Snyk is a very good product for vulnerability code scanning and can be used effectively. I would rate this product a nine point five out of ten.
ANDRESANTOS
Has improved development workflows through early vulnerability detection and accurate insights
Reviewed on Sep 23, 2025
Review from a verified AWS customer
What is our primary use case?
The most recent client had experience with other products that did not have some features Snyk provides, such as Fortify in the old version before OpenText acquisition. They gave feedback about the precision in discovering vulnerabilities. They found that Snyk can provide more insights about vulnerabilities than older applications in SAST and SCA .
We have integration with GitHub Actions to analyze the code and we use a double check in the pipeline. Our strategy is about shift left. The developers connect with Snyk, Git , and use this with the pipeline.
How has it helped my organization?
They evolved their maturity because they could find the vulnerabilities before the pipeline runs. They can find and correct these vulnerabilities in a step before the pushes and PRs to GitHub . They think it is a very positive feature.
What is most valuable?
I appreciate the UI. It is simple, fast, and I value the precision in the tests. The responses are positive.
Regarding the vulnerability database and AI, we have good experience with that. I cannot compare with other providers or vendors such as Veracode , Checkmarx, and others. All the tests are positive in my analysis.
What needs improvement?
Technically, we have better vulnerabilities detection in Checkmarx and Veracode . Both of them are more precise about vulnerabilities detection. Snyk is slightly less effective, but this is something they can improve on in the future.
For how long have I used the solution?
We have been using the solution for one and a half years. Not much time.
What do I think about the stability of the solution?
We did not need support during the proof of concept.
How are customer service and support?
The documentation is good. It is one of the reasons we did not need support. We could understand the implementation of the product and other features without the need for human interaction.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I made a proof of concept for a client with Checkmarx for about one month. I provided them a review about my experience. Now they are analyzing my results and considerations about other products too. I do not know if they already have a response about which product they will buy.
What's my experience with pricing, setup cost, and licensing?
Snyk is less expensive.
Which other solutions did I evaluate?
It is simpler than other vendors. We have some difficulties with other license models. They are more complex and involve an acquisition of more products such as Synopsys and Checkmarx used a complex license model. Snyk has a license model simpler than most of the other vendors.
What other advice do I have?
It was one of my three recommendations for my client. I am satisfied with the product. I rate Snyk 8.5 out of 10.
Program Development
Snyk Review
Reviewed on Aug 09, 2025
Review provided by G2
What do you like best about the product?
Its Scanning capabilities are very Good. For instance, it really does well in SAST scans and even SCA scans. It is also helpful in mitigating vulnerabilities by providing the best solutions
What do you dislike about the product?
It’s cost. It is very expensive. Other than that, The UI can be a bit better
What problems is the product solving and how is that benefiting you?
Snyk tackles the challenge of spotting and fixing security vulnerabilities across your software stack—everything from open‑source libraries and container images to infrastructure‑as‑code and your own codebase. It fits right into your workflow (think GitHub, IDEs, CI/CD), so you catch real issues early and get actionable fixes automatically. This means fewer surprises, faster development, and stronger confidence that security isn’t slowing you down—it’s built in.
reviewer2731785
Seamless integration and affordable pricing ensure efficient deployment while AI enhancements can further elevate feature set
Reviewed on Jun 30, 2025
Review from a verified AWS customer
What is most valuable?
The best feature of Snyk is the integration with our ticketing system, which is Jira . That integration was one we were specifically looking for. The deep integration with our IDE and repository is another valuable feature. In terms of deploying these features, it's seamless.
What needs improvement?
Snyk should improve the scanning capabilities for other languages. For example, Veracode is strong with different languages such as Java, C#, and others. However, Snyk performs better at mobile source code scanning compared to Veracode . If both capabilities were combined, that would be exceptional.
As we are moving toward GenAI, we expect Snyk to leverage AI features to improve code scanning findings. One key feature we are currently examining with Veracode is AIVSS (Artificial Intelligence VSS), which is an extension of CVSS to cover use cases or top 10 LLM findings during code scanning. Since this is relatively new, we expect upcoming features to cover AI scoring. We have AI projects currently deploying in our organization, and we want to cover not only normal CVSS but also receive an AI assessment score. Both Veracode and Snyk should implement this new scoring system for CVSS and AIVSS.
For how long have I used the solution?
We are a customer of Snyk, not a partner.
How are customer service and support?
We have contacted Snyk's technical support regarding several issues, and they have resolved them successfully.
Snyk's technical support deserves a rating of seven or eight out of ten. Their response time aligns with their SLA commitments.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
My previous company continues to use Snyk.
How was the initial setup?
The initial setup of Snyk was straightforward.
What's my experience with pricing, setup cost, and licensing?
We discussed pricing with their account manager and secured a favorable deal. Initially, we planned to subscribe through AWS Marketplace at standard rates. After negotiations, we received a special package with a good price point. We signed a two-year contract, and they provided special links for subscription. The payment structure operates on a monthly prepaid basis.
What other advice do I have?
While Snyk may not be the absolute best option in the market, it offers the most seamless experience currently available. Based on their price point and features, it's both affordable and fair considering the license package offered.
During our implementation, we conducted a pilot test with Snyk for approximately two weeks during our UAT session. We spent an additional two to three weeks obtaining management approvals for production repository access. The testing was performed on development repositories before moving to production. While the actual implementation took about a week, the complete process duration was extended due to internal organizational approval processes.
I rate Snyk 8 out of 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
PawanSingh2
Identifies vulnerabilities early and integrates smoothly with DevOps pipeline
Reviewed on Mar 17, 2025
Review provided by PeerSpot
What is our primary use case?
What is most valuable?
Snyk provides a lot of information on vulnerabilities, the packages being used, and their dependencies. It gives good insight into the security of those packages. Snyk helps detect vulnerabilities before code moves to production, allowing for integration with DevOps and providing a shift-left advantage by identifying and fixing bugs before deployment.
What needs improvement?
There are a lot of false positives that need to be identified and separated. The inclusion of AI to remove false positives would be beneficial. So far, I've not seen any AI features to enhance vulnerability detection or to address the issues I mentioned.
For how long have I used the solution?
I've been working with Snyk for almost two years now.
What do I think about the stability of the solution?
Stability-wise, it is okay. I've not seen any issues with stability.
What do I think about the scalability of the solution?
Scalability meets my needs. I would rate it nine out of ten.
Which solution did I use previously and why did I switch?
I used another tool before Snyk but I'm not recalling its name. AppScan was used in the very early days.
How was the initial setup?
Setup is not a big problem. It's easy. If I had to rate it from one to ten, I'd say nine.
What other advice do I have?
They should do their research and see if it definitely adds value to their DevOps pipeline. Overall, I rate the solution eight out of ten.