--- title: "Snyk integration" slug: "snyk-integration" description: "Learn how to integrate Snyk with Traceable for enhanced API security testing. This guide covers integration steps, managing Snyk API tokens, enabling scan policies, and interpreting vulnerability results with detailed code analysis." tags: ["API Security Analysis", "Snyk API Token", "Snyk integration", "Static Code Analysis", "Vulnerability detection"] updated: 2026-01-12T12:51:01Z published: 2026-01-12T12:51:01Z --- > ## Documentation Index > Fetch the complete documentation index at: https://traceabledocs.document360.io/llms.txt > Use this file to discover all available pages before exploring further. # Snyk integration ****Updates****(July 2025 to September 2025)**** - *September* — Updated the topic to include Snyk region selection and the flexibility to add custom findings. For more information, see [Add new Snyk integration](/docs/snyk-integration#add-new-snyk-integration). Snyk is a cloud-based software development platform that helps developers find and fix security issues in their open-source dependencies. It provides a range of tools and services to help developers identify and remediate issues (vulnerabilities) in their applications before they are deployed to production. Snyk scans application dependencies to identify known issues and guides how to remediate them. Traceable provides a Snyk integration with its [API Security Testing (AST)](https://docs.traceable.ai/docs/api-testing). This integration allows you to correlate issues found by AST with static code analysis performed by Snyk. ### What will you learn in this topic? By the end of this topic, you will be able to: - Learn about the Snyk Traceable integration. - Understand the prerequisites required for Snyk integration with Traceable. - Understand how to add a new Snyk integration. - Understand the Traceable Snyk correlation. --- ### Before you begin Make a note of the following before you proceed with Snyk integration with Traceable: - Make sure you have the *Snyk API Token*. For more information on generating one, see [Revoke and regenerate a Snyk API token](https://docs.snyk.io/snyk-api/rest-api/authentication-for-api/revoke-and-regenerate-a-snyk-api-token). - Make sure you have the *Region* information. For more information, see [Snyk Region](https://docs.snyk.io/snyk-data-and-governance/regional-hosting-and-data-residency#available-snyk-regions) and [Integrations Consideration](https://docs.snyk.io/snyk-data-and-governance/regional-hosting-and-data-residency#integration-considerations). --- ### Add new Snyk Integration To set up the Snyk integration, log in to your Traceable account, navigate to **Integrations** ( ![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/2025-07-09_12-58-50.png) ), and do one of the following: - Search for *Snyk*in the search bar. - Under All Integrations, navigate to**CI/CD** → **Snyk**. Click **Configure**, and in the **Add New Snyk****Integration** window, complete the following steps: 1. Specify the **Snyk API Token**. 2. Select the appropriate Snyk **Region**from the drop-down. You can also select **Custom** and provide your own reporting endpoints. Upon selection, you can specify the following: 1. **API Base URL***—*The API URL Traceable should use to communicate with the Snyk API. 2. **App Base URL***—*The APP URL Traceable should use to access the Snyk web application in your selected region. For more information, see [Before you begin](/docs/snyk-integration#before-you-begin). 3. Click **Validate**. Once Traceable validates the connection, **Save** is enabled. The following interactive demo walks you through the steps to navigate and integrate Snyk with Traceable. [Embedded content](https://demo.arcade.software/MUNyYlbb7x3HmxD2tbJf) --- ### Configuring Snyk during scan creation After you have successfully integrated Snyk with Traceable, you can enable it when [Creating a Scan](https://docs.traceable.ai/docs/creating-scan#step-5-—-integration) under API Security Testing. To do so, in the **Integration** step of**Create New Scan**, complete the following steps: 1. Enable the **Snyk** toggle to enable the integration. 2. Select the **Snyk Organization** and **Snyk Projects** for which you wish to correlate the results and run the scan. ![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/Traceable_Snyk_create_scan.png) Enabling Snyk Integration --- ### Correlate Issues with Snyk The security issues detected during the scan are shown in the**Issues** tab on the [Scan Details](https://docs.traceable.ai/docs/ast-scan-details) page. ![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/Traceable_Synk_corrleate_issue_scan.png) Scan Details You can click any**Issue Name** to get its detailed report, as shown below. ![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/Traceable_synk_blind_sql_injection_issue_detail.png) Issue (vulnerabilities) Details The Issue Detailed View window shows the API Endpoint where Traceable identified the issue. You can click an API endpoint to view its **Evidence**. The **Snyk** icon on this page is enabled if there are any correlations between issues found during the test and Snyk-identified code issues; otherwise, it is not visible. ![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/Traceable_snyk_blindSQL_issue_overview.png) Evidence and Snyk details Click the **Snyk** (![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/traceable_snyk_icon.png)) icon to view the detailed analysis. For example, when you click on the **Snyk** icon for *Blind SQL Injection*, you are redirected to the **Snyk Code Analysis** window where the issue is displayed. It indicates that line number *388* in your code has an issue. On this page, you can either **Ignore** the issue or view the detailed code by clicking **View** **details**. ![](https://cdn.document360.io/24f14f07-13d1-4684-8fae-6d8f811768ee/Images/Documentation/image (9).png) Snyk Code Analysis ## Related - [Scan Details](/ast-scan-details.md)