Snyk And PerimeterX Team Up To Address Open Source JavaScript Risk Increasingly Common in Web Applications

0
3023
  • They said that this will help businesses minimise exposure to risk and data breaches
  • PerimeterX Code Defender will integrate with the Snyk Intel Vulnerability Database to give application security teams a complete view of open source vulnerabilities in web applications

PerimeterX and developer-first security company Snyk have announced a a technology alliance partnership that solves the growing number of open source vulnerabilities found in web applications. They said that this will help businesses minimise exposure to risk and data breaches

Ido Safruti, co-founder and chief technology officer, PerimeterX said, “By partnering with the industry leading vendor for open source vulnerabilities, PerimeterX is ensuring that our customers have access to the most accurate and timely information to mitigate web application vulnerabilities in real time. The PerimeterX Code Defender runtime behavioral analysis and mitigation across first-, third- and Nth-party scripts combined with comprehensive and actionable JavaScript vulnerability data from Snyk provides users a quick path to remediation.”

The need for efficiency and speed in developing web applications is driving increasing adoption of open source and containers. In attempting to expedite development by leveraging open source, code reuse and third-party scripts, enterprises face bigger potential for risk.

70 per cent of a typical website code is third-party scripts

The Snyk 2020 State of Open Source Security Report found that the bulk of the open source vulnerabilities discovered are considered to be high severity. As per PerimeterX, around 70 per cent of a typical website code is third-party scripts.

PerimeterX Code Defender will integrate with the Snyk Intel Vulnerability Database to give application security teams a complete view of open source vulnerabilities in web applications. This will reduce the mean time to mitigation and also reduce the possibility of client-side data breaches and non-compliance.

Geva Solomonovich, CTO of Global Alliances, Snyk said, “Snyk’s new partnership with PerimeterX not only provides an automated, holistic view of vulnerabilities, but it also opens the door to quick, easy fixes and ongoing monitoring. The Snyk database includes the most current, comprehensive, actionable vulnerability data in the market. With developers able to make meaningful security decisions early in development, collaboration and efficiency between application security and development teams soars.”

LEAVE A REPLY

Please enter your comment!
Please enter your name here