Snyk and PerimeterX Collaborate to Address Open Source JavaScript Risk in Web Applications

Enterprise Security Magazine | Monday, October 12, 2020

Snyk’s new partnership with PerimeterX provides an automated, holistic view of vulnerabilities and opens the door to quick, easy fixes and ongoing monitoring.

SAN MATEO, CA: PerimeterX, the pioneering provider of application security solutions that keep digital businesses safe, and developer-first security firm Snyk, trumpets a technology alliance partnership that remediates the growing number of open source vulnerabilities found in web applications, to support businesses minimize exposure to risk and data breaches.  Together, PerimeterX and Snyk will provide a complete view of open source risk in web applications to mitigate the meantime and accelerate partnership between application security and development teams.

By collaborating with the industry-leading vendor for open source vulnerabilities, PerimeterX ensures that its customers have access to accurate and timely information to lower web application vulnerabilities in real-time. The PerimeterX Code Defender behavioral analysis and mitigation throughout the first-, third- and Nth-party scripts, coupled with comprehensive JavaScript vulnerability data from Snyk, offers users a quick path to remediation.

The demand for efficiency and speed in developing web applications drives the adoption of open source and containers. However, in attempting to expedite development using open source, code reuse, and third-party scripts, firms face the increased potential for threat. The Snyk 2020 State of Open Source Security Report stated that the open-source vulnerabilities found are estimated to be increased severity. Furthermore, according to PerimeterX, nearly 70 percent of website code is third-party scripts. PerimeterX Code Defender will combine with the Snyk Intel Vulnerability Database to give application security teams a complete view of open source vulnerabilities. Shortening means time to mitigation and reducing the possibility of client-side non-compliance and data breaches.

The Snyk database comprises the current, comprehensive, actionable vulnerability data. With developers making meaningful security decisions early in development,  efficiency, and collaboration between application security and development teams soars.