Snyk
Overview
Visualize and analyze Snyk resources, including projects, vulnerabilities, issues, and tests. Monitor security posture, enforce security policies, and detect vulnerabilities in code, dependencies, containers, and infrastructure. Integrate with CI/CD pipelines for continuous scanning to ensure the security of applications and environments.
Configurations
| Configuration | Description |
|---|---|
| Blueprint Account Name | A human-readable name for your account that will be used to identify this account across the application. |
| Snyk API Key | The API key used to authenticate with the Snyk platform. Generated in your Snyk account under Settings > General > Auth Token. |
| Data Crawl Frequency | The frequency at which Kscope will connect to Snyk and check projects for new vulnerabilities. |
Permissions
The Snyk blueprint requires a Service Account token or Personal API token with the following scopes:
| Scope | Why it's needed |
|---|---|
read:user | Access user profile information |
read:members | Read organization membership and roles |
read:projects | Access project configurations and scan results |
read:issues | Read vulnerability issues and their severity data |
read:integrations | Access integration configurations across the organization |
Important Notes:
- Use a Service Account token for production environments to avoid dependency on individual user accounts
- The token only requires read-level access — no write operations are performed
- All data is pulled from the Snyk API at the organization level
For more information about Snyk permissions, refer to the Snyk Documentation.
Schema Model
| Resources | Source Entity | Normalized Entity | Description |
|---|---|---|---|
| Snyk Organization | snyk.organization | Organization | A Snyk organization |
| Snyk User | snyk.organization.User | User | A user within the organization |
| Snyk Integration | snyk.organization.Integration | Integration | A configured integration (e.g., GitHub, GitLab) |
| Snyk Issue | snyk.organization.Issue | Issue | A vulnerability or license issue |
| Snyk Organization Entity | snyk.organization.Organization | Organization | The organization entity |
| Snyk Group | snyk.organization.Group | Group | A group within the organization |
| Snyk Member | snyk.organization.Member | Member | A member with assigned role |
| Snyk Project | snyk.organization.Project | Project | A monitored project with scan configuration |
Security Insights
The Snyk blueprint feeds data into the following analyzers:
| Analyzer | What it detects |
|---|---|
| Software Composition Analysis | Vulnerable open-source dependencies, license compliance risks |
| Application | Application-level risk scoring across integrated security tools |