DevSecOps Lifecycle Coverage with SnykDevSecOps Lifecycle Coverage with Snyk
Connect Snyk container scans and Dynatrace runtime insights for strong security.
App
- Product information
- Release notes
Overview
DevSecOps Lifecycle Coverage with Snyk provides comprehensive insights into the security of your containers.
Used with Dynatrace and its runtime context, this app lets you understand the states of all containers running in any environment where Dynatrace OneAgent is active.
Leveraging the data it obtains, Dynatrace queries Snyk for container scan results, providing you with clear coverage information about the security posture of your containers. This functionality ensures that each team is aware of whether their containers have been scanned and are free of vulnerabilities.
When security issues are revealed via scans, actionable insights with prioritization are provided automatically, thereby reducing the time required to address security issues.
In addition, the relevant stakeholders can be notified via messaging tools such as Slack and Teams with the help of the Dynatrace AutomationEngine. This ensures that all your teams are kept informed and that no rogue containers can harm your production environments.
Use cases
-
Development teams benefit from actionable steps to address security concerns quickly and efficiently.
-
Security teams and SRE teams benefit from insights into the coverage of security scans for active containers in production.
-
Automatically gain insights from pre-production by simply running Dynatrace OneAgent in your pre-production environments.
Get started
-
As soon as you start the app, you'll immediately see results from Dynatrace.
-
The app will then guide you to connect your Snyk Container to Dynatrace to receive the Snyk Container results in the DevSecOps Lifecycle Coverage app.
Details
To use this app, you need Snyk Container and Dynatrace Runtime Vulnerability Analytics.
Full version history
Full version history
1.5.2
Patch Changes
- 7d119b3: Upgraded to the latest version of SNYK API.
- 44faa15: Updated dependencies fixing the inflight vulnerability (Missing Release of Resource after Effective Lifetime - CWE-772).
1.5.1
Patch Changes
- 9a2a33d: Fixed problem in the containers screen preventing too many containers to load
1.5.0
Minor Changes
- 9899729: Added containers screen
Patch Changes
- c363d9e: Fixed inconsistent validation behavior for creating views
- eff61bd: Fixed rare instances of slight inaccuracy in container and container image counts in the overview
Full version history
1.5.1
Patch Changes
- 9a2a33d: Fix problem in the containers screen preventing too many containers to load
1.5.0
Minor Changes
- 9899729: Add containers screen
Patch Changes
- c363d9e: Fix inconsistent validation behavior for creating views
- eff61bd: Fix rare instances of slight inaccuracy in container and container image counts in the overview
Full version history
1.4.0
Minor Changes
- 9a4e374: Add action logs for the Snyk connector
Patch Changes
- 29087d7: Improves the validation while adding/editing the Snyk api endpoint
Full version history
1.3.0
Minor Changes
- 0375167: Load views separately and replace loading spinners with skeleton
- 243af5f: Add warning banners if SNYK or Dynatrace data is unavailable
- 20eb3a9: Show toast messages for creating/editing/deleting views and scroll into view on creation
- 874f9fc: Adds the radar to indicate scan status
- c6fb7b2: Add view preview that is shown for collapsed views
Patch Changes
- b9427d8: Add settings hint for re-entering API endpoint on secret change
- 2b74919: Fix infinite loading spinner in context menu when deleting a view failed
Full version history
1.2.1
Patch Changes
- 7a53b29: Add settings hint for re-entering API endpoint on secret change
1.2.0
Minor Changes
- 6cbea3e: Add Tracking for page view events
- 7cc7be1: Views can now be edited and created in a pop up modal
- bbf4a0e: Transition views from classic entity selectors to DQL
Full version history
No release notes