Case Study: Pinterest improves developer-friendly security and vulnerability triage with Snyk

Improving developer experience with security tools at Pinterest

Pinterest needed a better way to manage open source security across a large development stack without disrupting developers. The team was struggling with ad hoc vulnerability checks and wanted centralized visibility into dependencies, scanning, and triage. Pinterest chose Snyk, using its CLI, web UI, and developer-friendly support for language-specific repos and Bazel to fit into their existing workflow.

With Snyk, Pinterest automated scans in Jenkins and mono repos, pushed results into a central dashboard, and prioritized issues based on severity, exploitability, and exposure. This helped the security team keep developers in their normal tools while reducing manual effort and focusing on the highest-risk fixes, including incident response during Log4Shell. Snyk also improved buy-in by making scans transparent to developers and enabling more consistent, scalable vulnerability management across production services.

Pinterest

Kalpesh Dharwadkar

Product Security Engineer