Update dependency snyk to v1.1301.0

[renovate]

Note: This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
snyk	1.962.0 -> 1.1301.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

snyk/snyk (snyk)

v1.1301.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

• container: The Snyk CLI now supports scanning Ubuntu Chisel images for vulnerabilities (9328757)
• container: The Snyk CLI now supports scanning container images with zstd-compressed layers (5080e42)
• container: Added a new parameter, --include-system-jars, to support scanning of usr/lib JARs (57078b6)
• test(maven): Initial maven 4 support, testing against the most recent release candidate (88cf47e)
• test(maven): A new experimental flag --include-provenance that will produce DepGraphs containing purls with checksum qualifiers for each package. Primarily to be used via --print-graph, not yet used in the main testing flow (5b8fe0a)
• sbom(maven): A new experimental flag --include-provenance that will produce an SBOM with checksum qualifiers in each purl (5b8fe0a)
• language-server: Automatic selection of the organization for IDEs based on workspace folder (EA). (2cc554e)
• language-server: Analytics for configuration and folder trust (2cc554e)
• mcp: Support for writing scan output into a file (2cc554e)
• mcp: Service Account support (2cc554e)

Bug Fixes

• general: Fix incorrect error mapping for varying status codes (5829500)
• general: Some invalid flag combinations are now correctly handled (ca5903b)
• test: The Snyk CLI now correctly handles optional dependencies without separate package entries
  (bfcbda7)
• test: The Snyk CLI now correctly handles aliased packages with nested dependencies (bfcbda7)
• test: The Snyk CLI now correctly handles bundled dependencies with non-hoisted bundle owners (bfcbda7)
• test: Fixes issue where sub packages were getting grouped incorrectly, leading to deps getting marked as missing. (b904e8c)
• test, sbom: Stops misclassifying NX Build project.json as a NuGet project (ff6860f)
• test(npm): Improve npm alias support (cb37da7)
• test(npm): The Snyk CLI now correctly handles npm packages with bundled dependencies (7d93b86)
• test(python): Scanning projects using Python 2.7 will no longer fail with a string formatting error (4effc7f)
• test(python): Fixed JSON parsing error for Python projects with missing packages (4effc7f)
• test(maven): Underlying maven commands adjusted slightly to make aggregate projects that encounter issues when rebuilding more likely to succeed (3b72d86)
• test(dotnet): Fix an issue with NuGet v3 scanner where the netstandard and netcoreapp TargetFrameworks were treated as .netx.x (227b50c)
• test(dotnet): Fix an issue with NuGet v3 scanner where the pinned dependencies were not discovered (0d9b0c4)
• container: Fixed a bug where scanning docker images with very large files would result in the CLI crashing with no message (57078b6)
• container: Fix rare crash when scanning large Docker images (195ed78)
• container: Fix issue where go binaries in Linux images with complex paths were not properly detected as go binaries when scanning on Windows (be8098b)
• code: Add missing explicit error handling (755d01f)
• unmanaged: Ignored vulnerabilities in unmanaged (C/C++) projects are now properly excluded from JSON output when using .snyk policy files. This ensures that snyk-to-html and other tools that consume JSON output will correctly respect vulnerability ignores. (fa808c1)
• dependencies: Fix CVE-2025-58058 and CVE-2025-11065 (d7e87e2)
• dependencies: Upgrade golang to 1.24.10 to fix vulnerabilities (c039f99)
• dependencies: Upgrade to golang 1.24.8 (4dcf97a)
• dependencies: Upgrade xcode to avoid flaky signing (bdcb991)
• dependencies: Fix CVE-2025-47913 (a00b0dc)
• language-server: Various Language Server related fixes (2cc554e)

v1.1300.2

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• security: Upgrades dependencies to address CVE-2025-47913 (d7e87e2)
• general: Improved error messaging (5d16466)

v1.1300.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

• mcp: Added support for the MCP server to use IDE extension storage when running in VS Code (7f26dc6)
• redteam: Added a new experimental AI Red Teaming feature, read more: https://docs.snyk.io/developer-tools/snyk-cli/commands/ai-red-teaming (fe37e0f)

Bug Fixes

• test: Fix issue where npm aliases only detected the latest version of a dependency (cb37da7)
• security: Upgrades dependencies to address CVE-2025-58058 and CVE-2025-11065 (d7e87e2)
• general: Improved error messaging (5d16466)
• logging: Remove support for legacy DEBUG environment variable. For the supported debugging options, please check https://docs.snyk.io/developer-tools/snyk-cli/debugging-the-snyk-cli (2087f74)

v1.1300.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

• general: Improve SARIF compatibility by adding runAutomationDetails (3e232e5)
• container: Add support scanning system JARs (54e84d8)
• container: Add TargetOS to output of container scan (aa55cd9)
• test: Add support for godot projects (d9fc200)
• test: Add support for maven metaversions (f321ffa)
• language-server: Add CVSSv4 Links in IDE Issue Details
• mcp: Workflow and performance improvements

Bug Fixes

• container: Fixed crashes when scanning docker images with very large files (72cb040)
• test: Re-enable support for python 2.7 (02c7fe3)
• test: Improved error information when using --all-projects (36d14f9)
• test: Fix a bug due to case-sensitive ignores (b432406)
• test: Resolve project assets file path dynamically (75a152e)
• iac: Upgrade iac components to address a vulnerability [IAC-3439] (eaaaf84)
• logging: Fix broken debug logs due to secret redaction by redacting all user input (0cf19a7)
• language-server: Multiple bugfixes

v1.1299.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• language-server: Fix titles of Snyk Open Source code actions in IDEs (0add44d)
• code: Include missing uploadResults property in Sarif output (693e548)
• logging: Fix broken debug logs due to incorrect redaction (0cf19a7)

v1.1299.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation.

Features

• auth: Support for PAT auto region configuration. (ad8e4a7)

Bug Fixes

• code: Fixes code test --report when a project_id environment variable exists. (6168b1d)
• code: Fixes an issue with snyk code test where an empty input parameter would cause inconsistent behavior. (a661235)
• container: Stops spawning commands using a shell. (7ee9e15)
• dependency: Fixes CVE-2025-8959. (5a548fb)
• general: Fixes a bug where formatting of log timestamps could cause a crash in some cases. (92fa8be)
• iac: Fixes wrong status code checks. (77152e5)
• language-server: Fixes a bug related to the analytics environment variables. (6916af8)
• language-server: Correctly populates the environment for Open Source scans when called from the IDE. (945b029)
• language-server: Ensures changed API URLs are respected during authentication. (24ed981)
• language-server: MCP tool updates to support feedback and better tool descriptions. (8f2a8d1)
• test: Fixes a bug where project.assets.json files would not be detected in cases where it's destination path was altered with .NET properties. (75a152e)
• test: Improves error messages when using --all-projects. (960fa8e)

v1.1298.3

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• aibom: This command is now publicly available. Note that the feature is still experimental and subject to breaking changes without notice.

• Effective with release (Snyk CLI 1.1298.0), the minimum required GNU C Library (glibc) versions on Linux will be updated as follows:

  • For Linux x64 environments: glibc version 2.28 or higher
  • For Linux arm64 environments: glibc version 2.31 or higher

• If this affects you, please follow the advice here. Possible issues are errors mentioning GLIBC_2.27 or GLIBC_2.31 not found.

Bug Fixes

• test: Added support for Gradle 9.

v1.1298.2

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• Effective with release (Snyk CLI 1.1298.0), the minimum required GNU C Library (glibc) versions on Linux will be updated as follows:
  • For Linux x64 environments: glibc version 2.28 or higher
  • For Linux arm64 environments: glibc version 2.31 or higher
• If this affects you, please follow the advice here. Possible issues are errors mentioning GLIBC_2.27 or GLIBC_2.31 not found.

Bug Fixes

• code: Fix code test --report when a project_id environment variable exists (8be17d6)
• mcp: Skip trust browser popup if folder is already trusted
• mcp: Improve container scan security
• language-server: Fixed missing AI Fix entitlements for cases where the default org didn’t have AI Fix enabled

v1.1298.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• Effective with release (Snyk CLI 1.1298.0), the minimum required GNU C Library (glibc) versions on Linux will be updated as follows:
  • For Linux x64 environments: glibc version 2.28 or higher
  • For Linux arm64 environments: glibc version 2.31 or higher
• If this affects you, please follow the advice here. Possible issues are errors mentioning GLIBC_2.27 or GLIBC_2.31 not found.

Bug Fixes

• container: Fix failing scan of local container images (6095a60)
• mcp: Fix incomplete mcp instrumentation (9108dc0)

v1.1298.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• Effective with this release (Snyk CLI 1.1298.0), the minimum required GNU C Library (glibc) versions on Linux will be updated as follows:
  • For Linux x64 environments: glibc version 2.28 or higher
  • For Linux arm64 environments: glibc version 2.31 or higher
• If this affects you, please follow the advice here. Possible issues are errors mentioning GLIBC_2.27 or GLIBC_2.31 not found.

Features

• language-server: Introduce a folder trust mechanism for the MCP extension (e8fe9f8)
• language-server: Allow command cancelling for login command (e8fe9f8)
• language-server: Support Snyk personal access tokens as an authentication method for IDEs (5ccabc9)
• language-server: IAW UI improvements (8cd643d)
• test, monitor, sbom: Maven Dverbose improvement for long running scans resulting from dense dependency graphs creation (5abe28b)
• test: Improved support for comments in Dotnet's global.json file (164618c)
• test: NPM/Yarn alias are now supported and honored by default. (beb9fcc)
• test: Node IDs in the dep-graph produced by snyk test --print-graph will now contain type and classifier (22ba468)
• test: Use SNYK_TMP_PATH env var for temp dir path for Python tests (3ba01d1)
• test: For gradle projects, internal project dependencies containing multiple artifacts disguised under one artifact should now show all dependencies instead of randomly picking one of the dependencies grouped under the disguised coordinate when scanned via snyk test --gradle-normalize-deps (22ba468)
• auth: Support Snyk personal access tokens as an authentication method for the CLI (217aa3e)
• aibom: Added aibom extension (58e5143)
• aibom: Support optional html rendering when using --html (dd4de81)
• container: Add support for RPM packages scanning in SLE15.2+ images (c5e3a03)

Bug Fixes

• general: Fixes incorrect SARIF schema link for Code, Container, IAC and Open Source product line output (f283dd9)
• language-server: MCP tool description and params (bb88287)
• language-server: Update IAW wording to match web UI (bb88287)
• language-server: General MCP extension improvements (e8fe9f8)
• language-server: Make sure parsing of issues does not end prematurely for unmanaged scans (01f53e3)
• language-server: AI fix applying to the wrong lines (01f53e3)
• language-server: Display inline ignores, if feature flag is set in VSCode (01f53e3)
• language-server: OAuth flow should use GAF network HTTP Client (9c36d43)
• language-server: Add snyk-ls- prefix to x-snyk-ide header (9c36d43)
• language-server: Parameter precedence for SCA scans (9c36d43)
• language-server: AIFix loads folder path from cached issues instead of computing it (72dd095)
• language-server: Potential cross-site scripting (XSS) vulnerability in the HTML reports generated by the IaC scanning infrastructure (72dd095)
• language-server: Ignored OSS issues are not propagated to the client (72dd095)
• language-server: Workspace folder trust validation failure on case-insensitive filesystems (Windows and macOS) when comparing paths with different letter casing (72dd095)
• langauge-server: Read locks when running auth command (420d62a)
• language-server: Authentication command is now cancellable (35eb9a8)
• language-server: MCP command for SCA (c6f1203)
• language-server: Send auth analytics when token updated (6916af8)
• test, monitor, sbom: Maven Dverbose algorithm adds only the dependencies resolved by maven in the dependency graph/sbom (9b6abd3)
• test, monitor, sbom: -- -Dverbose affecting scope collisions from the maven Dverbose command output (parentNodeId does not exist error). (0a48b96)
• test, monitor: Misleading OutOfSync error in npm projects for top-level bundled dependencies (8ac67c6)
• test, monitor: Misleading OutOfSync error in yarn projects with multiple versions for the same dependency (8ac67c6)
• test, monitor: Fixes error in pip scans when a remote requirement matched the name of local directory (c196bae)
• test: Imports that failed when that file contained special content such as URLs will no longer fail because of it (164618c)
• test: Scanning open source dependencies of PHP projects when composer is installed on the user machine works again (39e3379)
• test: Bump nodejs parser to handle manual aliases on indirct deps. (15f693a)
• test Bump snyk-mvn-plugin to require Node 20 (c91cfbb)
• test: Performance improvements running snyk test --print-graph on gradle projects (156fdb2)
• test: Fixed error Could not scan C/C++ project: RangeError: Maximum call stack size exceeded which was sometimes seen when scanning very large archives using snyk test --unmanaged (5ab0676)
• code: In the golang native code test implementation (CCI), fix hash mismatch errors when uploading non UTF-8 content (33d33e9)
• code: Sarif and json file output handling aligns with non-native code implementation (7f28efa)
• iac: Fix CVE-2023-46402 (5675ed4)
• iac: Fix issue preventing users on regional Snyk instances from accessing their IaC scan results via snyk iac test --report command (4ed65cc)
• container: Add container test target reference support (61b391b)
• sbom: Performance improvements running snyk sbom on gradle projects (156fdb2)
• ignore: Align handling for invalid ignore expiry across Snyk product lines (54b4f56)
• logging: Redact negotiate in debug logs (8daa112)
• logging: Fixes some crashes when the CLI was used with debug and trace logging level enabled (92fa8be)

v1.1297.3

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• logging: Improves the sanitization of credentials in local debug logs. (38322f3)

v1.1297.2

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• logging: Improves the sanitization of credentials in local debug logs. (e054455)
• language-server: IDE Connectivity for Proxy Users: Fixes an issue where IDE plugins could fail to connect when operating behind an NTLM proxy.
• language-server: Snyk Code Local Engine Fix: Addresses a regression that prevented the Snyk Code Local Engine (SCLE) from functioning correctly within the IDEs.

v1.1297.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• test: Rollbacked a regression introduced by a change in gradle module resolution in version 1.1297.0 (7991133)

v1.1297.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

• container: Support scanning container images from tar files without specifying a type (58b0861)
• iac: Improve IaC deployment to avoid on the fly downloads (5108f58)
• sbom: Introduce sbom monitor command (24e96c3)
• test: Improve gradle module resolution (7991133)
• language-server: Introduce explanation of AI fixes in IDEs (74fa322)

Bug Fixes

• container: Fix issue when scanning invalid node manifest files (ceb8020)
• code: Fix hash mismatches for files containing non-UTF-8 content (33d33e9)
• iac: Ensure to use the correct org id when sharing results for v2 (1c4094a)
• iac: Ensure to use target-name (2201f0a)
• sbom: Fix issues when generating sboms based on NuGet .sln (80c43d9)
• test: Fix issues when scanning gradle projects on Windows (11586cc)
• test: Improve error messages when using fail-fast, all-projects and json (a396bd6)
• test: Fix yarn 2 out of sync issues (18aee45)
• test: Fix pnpm out of sync issue for duplicated peer and dev dependencies (2581e16)
• test: Ensure internal dependencies are represented correctly when normalizing Gradle dependencies (c7e2713)
• test: Fix testing composer-based PHP projects (39e3379)
• language-server: Fix and improve issue filtering in IDEs (a474d67)
• language-server: Fix unmanaged C/C++ scans with '—unmanaged' flag in additional parameters (01f53e3)
• language-server: Fix applying Snyk Code AI fixes on the wrong lines (01f53e3)

v1.1296.2

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• mcp: Add experimental Model Context Protocol server for agentic workflow support (3b5f494)

Bug Fixes

• general: Fix OAuth authentication issues (b2684db)
• code: Write JSON/SARIF files when nested directories do not exist (faca897)
• test: Clearer error messages when testing multiple projects with fail-fast (a396bd6)

v1.1296.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• test: Add poetry v2 support (49c6652)
• code: Fix backward compatibility issue in sarif driver name (5ef6442)
• iac: Fix iac test network issues (815ed82)
• language-server: Increase authentication resilience (07fc381)
• language-server: Avoid that the trust dialog blocks the application. (07fc381)
• language-server: Fix duplicate Open Source Issues appearing only in a single IDE tree node, despite occurring in multiple files. (07fc381)
• dependency: Upgrade golang.org/x/net to address CVE-2025-22870 (7edd450)

v1.1296.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

• general: Improved error logging and handling

Features

• container: add support for --exclude-node-modules option (4756f27)
• container: adds kaniko support (bfb69c8)
• general: display a unique interactionID alongside each error (960a71c)
• test: python support for local wheel files specifiers (42675eb)
• test: dep-graph json file output (90f24ec)
• test: print legacy tree with json file output (b256937)
• test: display all applicable maven unmanaged identities (ebf6ba1)
• code: enable v1 fingerprints in code sarif output (00644af)
• test: Add 'pkgIdProvenance' labels to dependency graph nodes when the package identity has been changed from what has been discovered in the manifest files (4d529b3)
• test: added Python support for sys_platform (1aa1565)
• language-server AI fix explain (26d118f)
• language-server enable calling mcp commands via ls commands (6f80a03)
• language-server add scan source to metrics (6f80a03)
• language-server add mcp server, refactoring (6f80a03)
• language-server added a new code action and code lens for showDocument (8e7ab06)
• language-server add Option for Pre-Scan command, fix auth race (64920ac)
• language-server add ideStyle variable to static html (0a05e66)
• language-server intiial commit of shared html for scan summary panel (0a05e66)
• language-server send scan summary and scan base & working directory concurrently (1908a08)
• language-server store folder config outside of git repo, add reference folder (50d0770)
• language-server send initial summary panel notification (50d0770)
• language-server add a new $/snyk.scanSummary notificiation (fc80c9c)
• language-server support maven pom hierarchies for highlighting & fixes (e5924fc)
• language-server Sending a user event when fixing inside the editor (e5924fc)
• language-server Sending IDE+extension versions to autofix (a18975a)

Bug Fixes

• container: add container test doc info for --exclude-node-modules (2faf2d1)
• test: fix dotnet UTF-16LE support for target framework (e90075a)
• test: reduce false positives when scanning improved dotnet projects (c21625a)
• test: use --strict-out-of-sync when set to false with pnpm for top level dependencies (8d5b71a)
• test: fix OutOfSync errors in pnpm for download urls (b6e4ea0)
• test: fix OutOfSync errors in pnpm git protocol dependencies (5c8dc34)
• code: Don't write sarif files when no results are found (5a15113)
• code: Support single file test for golang native implementation (d7881f1)
• sbom: mavenAggregateProject with Dverbose or sbom (e88cf71)
• iac: Updates the user messages for snyk iac test --report for IaC V2 (1c9b3b3)
• language-server check folder trust before opening/changing/saving file (26d118f)
• language-server new issue summary totals (6f80a03)
• language-server add correct lesson url for license issues (6f80a03)
• language-server issues with non-UTF-8 encoded files in Snyk Code (8e7ab06)
• language-server ignore first dataflow element for oss fingerprint (64920ac)
• language-server use workdir folderConfig for ref Scan (64920ac)
• language-server test bundle add size property (0a05e66)
• language-server normalize path for file filter and reduce memory footprint (0a05e66)
• language-server add ideScript to Summary html (0a05e66)
• language-server add css variables and headers (0a05e66)
• language-server panic in range_finder (50d0770)
• language-server fix issue metadata used for hashing (fc80c9c)
• language-server use diff without enricher for delta (b213b58)
• language-server move issue view option filtering to the LS to not display ignored diagnostics in editor (b213b58)
• language-server add api version query to explain API URL (b213b58)

v1.1295.4

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• security: Upgrades dependencies to address CVE-2023-37788

v1.1295.3

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• security: Upgrades dependencies to address CVE-2025-21614
• language-server: Improved memory usage when executing code scans on large projects
• language-server: Fix incorrect filtering of files when executing code scans which could fail the analysis
• language-server: Fix random unexpected logouts when using OAuth2 authentication

v1.1295.2

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• general: revert dependencies upgrade which introduced a regression on a number of Linux installations

v1.1295.1

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• security: Upgrades goproxy to 1.5 to address a high severity vulnerability
• security: Upgrades dependencies in IaC plugin to address CVE-2025-21614

v1.1295.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

• iac: include evidence field in json output [IAC-3161] (9487a08)
• auth: auto detect API Url during OAuth authentication (6884511)

Bug Fixes

• test: support verbose gradle graphs for sbom generation (600ef50)
• general: prevent snyk-policy lib from interrupting stdout to ensure valid --json --sarif output (469edf5)
• general: improved error messages around network requests (f6fc5f7)
• general: only read SNYK_ prefixed env vars (5bfcbe8)
• instrumentation: add default oss product for monitor as well (83cabc3)
• container: optional dependencies are properly connected in the dep-graph (3205e66)
• container: package-lock v3 missing sub-dependencies 94c9b7f)
• container: support --exclude-app-vulns with oauth (73a75fa)
• monitor: use error catalog messages for monitor commands (4e58601)
• iac: extra error handling and debugging [IAC-3138] (7fbae0f)
• iac: snyk-iac-test security update [IAC-3171] (fac22bb)
• iac: update snyk-iac-parsers version [IAC-3138] (5326d9d)
• iac: use proxy aware snyk-iac-test [INC-1647] (d5d1e2e)
• test: do not treat warnings as errors on restore (d0113eb)
• test:fix mismatch/off-by-one on unmanagedDependencyCount in the analytics logs UNIFY-340 (75d8e6d)
• test: update snyk-nodejs-plugin to fix micromatch vuln (766bd1d)
• test: upgrade mvn-plugin to handle jar scanning sha-not-found error (060380a)
• test: fix runtime versions overwriting nuget versions (5e715cf)
• instrumentation: stop sending CLI args in analytics (6d183fb)
• policy update policy library to fix valid json output (0bc0aed)

v1.1294.3

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• security: update golang.org/x/crypto/ssh to fix a critical vulnerability

v1.1294.2

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

• container: ignore npm/yarn default cache directories
• container: fix: avoid possible unhandled promise rejections

v1.1294.1

Compare Source

Bug Fixes

• container: unable to process RedHat images when the “content_sets” attribute was missing in the redhat-content-manifests file. (snyk/snyk-docker-plugin#615)
• container: skip optional dependencies when testing Python projects to prevent "too many vulnerable paths for conversion to legacy test output" error (snyk/snyk-docker-plugin#614)
• container, test, monitor prevents "Invalid JSON" being produced when debugging is enabled and policies are being applied. (snyk/cli#5583)

v1.1294.0

Compare Source

The Snyk CLI is being deployed to different deployment channels, users can select the stability lev

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

(node:884) [DEP0060] DeprecationWarning: The `util._extend` API is deprecated. Please use Object.assign() instead.
(Use `node --trace-deprecation ...` to show where the warning was created)
npm WARN deprecated boolean@3.2.0: Package no longer supported. Contact Support at https://www.npmjs.com/support for more info.
npm ERR! code E404
npm ERR! 404 Not Found - GET https://registry.npmjs.org/javafbp - Not found
npm ERR! 404 
npm ERR! 404  'javafbp@^4.1.11' is not in the npm registry.
npm ERR! 404 You should bug the author to publish it (or use the name yourself!)
npm ERR! 404 It was specified as a dependency of 'javafbp-websockets'
npm ERR! 404 
npm ERR! 404 Note that you can also install from a
npm ERR! 404 tarball, folder, http url, or git url.

npm ERR! A complete log of this run can be found in:
npm ERR!     /runner/cache/others/npm/_logs/2025-12-03T19_03_53_417Z-debug.log