2026-05-08

Snyk embeds Claude across AppSec, ships Evo for prompt injection and MCP supply-chain attacks

Snyk embeds Claude in its AI Security Platform and ships Evo — the first AppSec tool for prompt injection, MCP supply-chain attacks, and agent tool calls.

On May 7, 2026, Snyk announced it has embedded Anthropic’s Claude across its AI Security Platform, powering vulnerability discovery, prioritization, and developer-ready remediation across code, dependencies, containers, and AI-generated artifacts. The headline product, Evo by Snyk, is the first major AppSec tool dedicated to the agent attack surface.

The numbers behind the bet

Snyk cites that 65–70% of production code is now AI-generated and nearly half contains vulnerabilities. Traditional SAST/DAST tools were built for human-written code with predictable defect distributions; LLM-generated code introduces hallucinated dependencies, insecure-by-default boilerplate, and subtle prompt-injection vectors that don’t match the patterns those tools were trained on.

What Evo actually does

Three capabilities matter for builders:

1. Agent runtime red-teaming. Evo probes running agents for prompt injection and data exfiltration paths — testing whether a malicious tool description, a poisoned document, or a crafted user message can hijack the agent’s tool calls.
2. Agent supply-chain scanning. Evo inventories MCP servers, datasets, and third-party tools your agents depend on, and surfaces hidden capabilities (e.g., an MCP server that quietly exfiltrates context, or a tool that escalates privileges via prompt manipulation).
3. Runtime policy enforcement. Tool calls can be inspected and blocked before execution if they violate organizational policy — for example, blocking an agent from sending credentials to a non-allowlisted endpoint.

Why this is timely

In the past three weeks, the MCP ecosystem has crossed 200K public servers, Claude Code Routines launched (May 6), and Anthropic’s Managed Agents added Dreaming-style cross-session memory. Each adds attack surface that didn’t exist 90 days ago. Snyk shipping Evo now is timed to the moment enterprises start asking compliance questions about agentic deployments.

Practitioner note

If you ship Claude Code output to production or expose MCP servers in regulated environments, the gap between “AI-generated” and “AI-scanned” code is becoming an audited compliance risk. Action: even if you don’t adopt Evo, take 30 minutes this week to document which MCP servers your agents call, which tools they have access to, and which policies (if any) gate their tool calls at runtime. That document is the artifact your next SOC 2 audit is going to want — and the inventory itself often surfaces capabilities you didn’t realize were exposed.

Sources

• Snyk AI Security Platform with Claude — Help Net Security ↗
• Snyk × Claude partnership page ↗
• May 8, 2026 AI updates — SD Times ↗

Tags