1.1303.2 (2026-03-23)
The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation
Features
- redteam: Introducing Snyk Agent Red Teaming with attack profiles (fast, security, safety) via the new --profile flag, allowing users to select pre-configured sets of attack goals. (99e2953)
- redteam: New terminology for goals, strategies, and attacks to better describe Agent Red Teaming workflows. (99e2953)
- redteam: Tenant-based authentication using --tenant-id for routing Agent Red Teaming commands. (99e2953)
- redteam: Interactive wizard to guide users through Agent Red Teaming configuration and setup. (99e2953)
- container: Add Go stdlib vulnerability detection to container scans (aacdc53)
Bug Fixes
- test: Fixes a bug where the CLI repeatedly evaluated user privileges (feature flags) when scanning multiple Go projects.(d348cb7)
- test: Fixes a bug where scanning Go projects (with a
replacedirective pointing at a relative path) would fail due to badly formatted PackageURLs.(4c6b663) - container: upgrade minimatch dependency to 3.1.3 (aacdc53)
- dependencies: Fix CVE-2026-33186 (f8a0602)
- dependencies: Fix CVE-2025-69873 (d240fcf)
- container: Fixes an issue where container scans of OCI archive images (including hybrid-format archives produced by Docker Desktop's containerd image store) could silently fail, returning exit code 0 with no vulnerability results. (4ad137f)