Case Study: Skyscanner achieves consolidated open-source vulnerability visibility and rapid fixes with Snyk

Skyscanner fixed projects and gained visibility into their open source vulnerability exposure

Skyscanner, the global travel search site, was delivering a high-traffic website and app at rapid scale and lacked a centralized view of its open source dependencies and licenses. This made it difficult for security and legal teams to identify exposure and track license compliance, so Skyscanner selected Snyk to integrate with their development workflows and shift security ownership left to developers.

Snyk was deployed in GitLab and CI to scan at commit/build time and provide remediation tools such as the “merge request to fix” and Snyk patches. The result: Skyscanner now monitors nearly 500 projects, the legal team can track license compliance, and developers can patch vulnerabilities quickly — notably a high‑severity qs flaw in a base template was patched across hundreds of projects within days, substantially reducing their open source exposure.

Skyscanner

Alex Harriss

Security Engineer