Release on February 7, 2024

  • Snyk integration - Snyk SAST scans create a long list of potential attack vectors of vulnerabilities. Many of these vulnerabilities are false positives (SAST FP ratios are between 70% to 90%). Most enterprises lack the manpower to validate all these vulnerabilities and they apply a risk-based prioritization approach based on two variables, severity (critical, high, medium, low), and risk score (ranging from 0 to 1,000, the higher the score the more critical the vulnerability is).
    As Snyks' vulnerable list can have hundreds or even thousands of issues, the team can set priority criteria for importing vulnerabilities into the Bright platform to focus the effort on the most important vulnerabilities quickly.