DEV Community

Discussion on: 5 developer tools for detecting and fixing security vulnerabilities

opinionatedpie profile image
ingrid.e Author • Edited on

Hey hey, they’re actually not just for JavaScript / just one language - with the exception of Webhint. I’ve mentioned that clearly for Dependabot, Renovate and Snyk, and GitGuardian is focused on secrets.

hassan_schroeder profile image
Hassan Schroeder

Yes, Webhint is JS-only, and that's not obvious until you've dug through their site. Snyk has extremely limited language support, 2 of the 4 are JS, and I don't use any of them.

I'm just saying that it would be nice to be able to look at articles like this and quickly distinguish which recommendations are relevant and which are not.

Thread Thread
opinionatedpie profile image
ingrid.e Author

Snyk has support for 4 languages for Code and 10 for Open Source. Snyk Container is its own thing. I get your suggestion and definitely will when it applies, but I don’t think it’s the case here.
The aim is to cover areas you will most likely encounter at work or in open source, and maybe get folks to try some tools they’ve never used before.

Some comments have been hidden by the post's author - find out more