Scanning
Software Compisition Analysis (SCA)¶
Performed by the snyk test
command.
Analyzes open-source components, their supporting libraries, and their direct and indirect dependencies. These items are then compared against the Snyk vulnerability database and if associated vulnerabilities are found Snyk will include them in its scan results. Click here for more information on Snyk's use of SCA.
Static Application Security Testing (SAST)¶
Performed by the snyk code test
command.
SAST focuses on the source code of an application and scans to identify problematic coding patterns. Click here for more information on Snyk's use of SAST.
Checkpoint¶
- Identify open source (SCA) vs code analysis (SAST) vulnerabilities in Snyk