Security policy management

Automate how you identify certain issues

Overview

NOTE

This feature is available for Enterprise plans.

Security policies provide an automated way to identify certain issues or types of issues and apply actions like changing the severity or ignoring the issue based on your conditions. A Group Administrator can change the default security policy or create new security policies for the entire group. To open your group security policies, complete the following steps.

  1. Select the organization drop down.
  2. Select your Group Overview.
  3. Select the Policies tab.

Select Snyk Default Security Policy to change the conditions or actions for a security policy that applies to all projects in all organizations in the group. Or select Add new policy to start a new policy.

Security policy conditions

When updating the default policy or creating a new policy, the IF statement section of the policy rule defines the conditions in which the policy applies to issues.

Security policy actions

When updating the default policy or creating a new policy, the THEN statement section of the policy rule defines the action that is performed on issues that meet the conditions of the rule.

Scan your code & stay secure with Snyk - for FREE!

Did you know you can use Snyk for free to verify that your code
doesn't include this or other vulnerabilities?

Scan your code

Security policy application and precedence

Policies can be applied either to all the projects in one or more organizations, or according to attributes that you have applied to projects.

Congratulations

Congrats! You learned how to define the conditions, actions, and applications for new security policies.