Snyk helps you to fix vulnerabilities in two ways. Either by upgrading the direct dependencies to a vulnerability free version or by patching the vulnerability.
Fixing with Snyk can either be performed in 4 different ways
by using the Source code integrations and clicking the Open a fix PR button on the project page
by clicking the Fix this vulnerability link on a specific issue card on the project page.
automatic pull requests - When new remediation becomes available that helps you to fix a vulnerability Snyk can open an automated pull request.
by using the CLI and running the
snyk wizardcommand to fix node.js projects.
When a new fixable vulnerability is found, Snyk attempts to open a new pull request on your behalf (in a repository for which we support automatic fix pull requests), or suggests you open one manually based on your settings.
When Snyk automates the fix, we check if there are an existing branch and pull request for the exact fix; if there is, we reopen the existing, already closed pull request on that branch.
When there’s no existing branch and pull request for the issue a new branch and pull request are created.