Snyk Runtime Sensor
SnykExternal reviews
137 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Snyk, your best friend to fix the vulnerability
What do you like best about the product?
Easy to use, even a beginner can use it without problem. Fast, the process very fast.
What do you dislike about the product?
some vulnerable cannot be fixed automatically
What problems is the product solving and how is that benefiting you?
some vulnerables related to docker image.
I can fix all critical and high severity issues in minutes
I can fix all critical and high severity issues in minutes
Scanning & enforcing our Infrastructure permissions & configurations using AWS IAM Role for Fugue
What do you like best about the product?
Fugue offers regulatory health checks in our AWS platform, evaluating our cloud compliance and matching it with our customer standards and organization policies. Ruleset definitions can be made through built-in privileges or custom privileges based on our requirements. It acts as a centralized posture management utility for our cloud platform for resource control access and security compliance.
What do you dislike about the product?
For our enterprise reporting, Fugue facilitates our AWS cloud footprint analytics which is customizable through its dashboard utility. These reports are securely stored in our Amazon S3 buckets and also shared with our clients through Amazon SNS subscription. Overall, I'm satisfied with the solutions offered by Fugue for our cloud resources & SDLC management.
What problems is the product solving and how is that benefiting you?
Before performing our deployments in our client environments, we need to ensure the security standards & configurations across multiple AWS regions. Fugue provides a Unified policy engine that is capable of overviewing our cloud compliance and governance both in the pre-deployment stage and post-deployment stage. Fugue Role needs to be assigned through AWS IAM service, and our IaC scripts are deployed with the help of the AWS CloudFormation stack feature. Prior to the deployment, scanning is done to ensure proper security audits, and rescanning can also be specified after the deployment is complete.
Snyk: The best security tool for Microservices
What do you like best about the product?
We have been using Snyk for almost a year now for multiple clients and projects. Snyk allows us to scan the code written in various languages, Docker containers, and IaC files. It can be easily integrated with almost all the CI pipelines for inline scans. As per our experience, the scan time is very low as compared to other tools in the market, which helps un in reducing the build time.
What do you dislike about the product?
I didn't find anything to dislike about this tool yet, but it's costly compared to other tools available in the market.
What problems is the product solving and how is that benefiting you?
We are using Snyk for scanning the code and docker images in the CI pipelines. It takes very little time to scan the code, which helps us reduce the overall build time. The reports are accurate with minimum false positives.
Best app to scan for vulnerabilities
What do you like best about the product?
It helps me scan the apps I make, so I don't ship off vulnerable software to my client
What do you dislike about the product?
A bit hard to find people around it (small community)
What problems is the product solving and how is that benefiting you?
I am scanning my web apps for security issues. It saves me the hassle of taking web apps down for maintenance by solving problems before deployment
Solid SaaS for cloud provider security
What do you like best about the product?
The way Fugue displays inter-relationships of resources makes it easier to understand potential impact. It has the feel of a graph database display.
What do you dislike about the product?
I am unable to leverage SAML-based authentication when using Fugue CLI. I want to get away from an API key and key secret to do CLI work.
What problems is the product solving and how is that benefiting you?
We use Fugue to capture security risks based on CIS and GDPR security standards. We generate reports to create a punch list for remediation. It is so easy.
Best for secure your code
What do you like best about the product?
Easy to use. I use snyk extension on my vs code: first scan and fastly detects some security issues.
It creates pull request to fix security problem on your code.
It creates pull request to fix security problem on your code.
What do you dislike about the product?
No integration with google cloud source code but only to GCR.
What problems is the product solving and how is that benefiting you?
The ability to capture vulnerabilities before deployment and when I'm coding.
Company that fits exactly what we were looking for
What do you like best about the product?
I like that they fill a gap in the compliance world that no one else really can compete with.
What do you dislike about the product?
I wish they had more of a relationship with HITRUST
What problems is the product solving and how is that benefiting you?
It helps assure us that we're staying HIPAA compliant.
Fugue is a great tool to use to manage your compliance
What do you like best about the product?
It is very intuitive and makes managing compliance easier. They have controls for everything from HIPAA to CIS. The customer support and documentation are also great and provide excellent help.
What do you dislike about the product?
The only current drawback is non support of AWS Organizations but that is a roadmap item.
What problems is the product solving and how is that benefiting you?
We use Fugue to manage HIPAA compliance in AWS.
Snyk enables you to stay safe and let you focus on business value creation
What do you like best about the product?
The vulnerability scanning tool can detect dependencies even if it is nested inside the project which is quite powerful.
What do you dislike about the product?
There are too many login options that my company is not preferred. Would be better if it can tightly integrate with the corporate standard
What problems is the product solving and how is that benefiting you?
Open sources vulnerabilities discovery and auto fix. It allows developers to fix most of the issue with just 1 click commit.
Essential in understanding our vulnerability landscape
What do you like best about the product?
Snyk's UI and tooling present complex information in a straightforward, easy-to-digest manner. These qualities make it easy for teams to spin up and start acting on the information given. With new services supported and other quality of life upgrades happening frequently, it makes using the tool a breeze. The number of supported services Snyk offers ensures we only need one tool for the many environments we have.
What do you dislike about the product?
With our on-prem requirements, we've spent several cycles performing upgrades and transitioning to the brand new CNA offering. There have been some hiccups here and there, and sometimes it means we're not always on the latest version to utilize all the available features advertised. The team has been working hard to improve this aspect of the tool of the non-SaaS offering and I believe will no longer be a pain point very soon!
What problems is the product solving and how is that benefiting you?
From scanning docker images to dozens of team projects, we're able to aggregate and act on lots of information in a speedy way. This allows us to ship more secure code and environments, giving us better peace of mind we're staying secure with the latest package updates.
showing 41 - 50