1.1306.0 (2026-07-09)
The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation
Features
- doctor: Adds the
snyk doctorcommand to diagnose common CLI problems: generate a diagnostic report for the current system, or analyze debug log output. (ab56a0e) - container: Container scans now detect the Java runtime version across a wider range of JVM base images, and can now find vulnerabilities in .NET application dependencies. (5586aac)
- mcp: The breakability evaluation tool in the Snyk MCP Server is now enabled by default and no longer requires an experimental flag. (56a9196)
- test: Improves dependency detection for Gradle projects. (c819b69)
- redteam: The experimental
snyk redteamcommand has been removed from the CLI, following its deprecation (deprecation date May 31, 2026). (c7d0e3e)
Bug Fixes
- general: Shows a warning when a request is automatically retried due to rate limiting, instead of retrying silently. (f803397)
- general: Skips the reachability upload when no supported files are present, instead of failing. (9ba448c)
- test: Fixes dependency resolution for Swift Package Manager projects that reference packages by registry identity, so they're correctly matched to their GitHub source for vulnerability scanning. (64ac442)
- test: Fixes scanning of sbt projects with custom Scala configurations. (5765a12)
- test: Fixes a bug where scanning Yarn workspaces could report vulnerabilities from a workspace member's dev dependencies as if they were production dependencies, when that member was consumed by a sibling package. (ade08e4)
- deps: Updates dependencies to fix vulnerabilities: