Use Cases
Software Products MSPs Schools Development & Marketing DevOps Agencies Help Desk
 
Internet Status Blog Pricing Log In Try IsDown for free now

Outage in Snyk

PNPM project testing and import degraded for SCM scans in regional environments

Resolved Minor
December 18, 2025 - Started about 1 month ago - Lasted 19 days
Official incident page

Incident Report

We have detected an issue that is causing SCM scans of PNPM projects to be mis-attributed to NPM or Yarn. This is only occurring in the regional hosted environments (customers that login on sites other than app.snyk.io) Symptoms: * PNPM projects may be detected as NPM projects, or display import errors due to missing yarn.lock files. * Customers using set-and-forget may notice that projects previously detected as PNPM are deactivated and new NPM projects are created. * Customers may notice a change in dependency or vulnerability reports for these projects. This does not affect customers on app.snyk.io This does not affect customers using Snyk CLI to scan pnpm projects, where the PNPM option is enabled in snyk preview. We will update with further information as it becomes available
Components affected
Snyk Open Source Snyk Open Source Snyk Open Source

Need to monitor Snyk outages?

  • Monitor all your external dependencies in one place
  • Get instant alerts when outages are detected
  • Be the first to know if service is down
  • Show real-time status on private or public status page
  • Keep your team informed
Start monitoring for free
Latest Updates ( sorted recent to last )
RESOLVED 15 days ago - at 01/06/2026 07:14AM

This incident has now been resolved.

The Snyk Incident Response has now been stood down.

MONITORING about 1 month ago - at 12/18/2025 10:38PM

We have applied a fix for this issue, and projects are now testing and importing correctly.
* Customers who have been affected are advised to import the affected repos again to ensure that projects are correctly identified, and any projects that were not able to import due to this incident are imported correctly. There is no need to delete existing projects.

IDENTIFIED about 1 month ago - at 12/18/2025 03:44PM

Our Engineers have identified the root cause and are now working on a solution.

We'll keep you updated with our progress.

INVESTIGATING about 1 month ago - at 12/18/2025 07:11AM

We have detected an issue that is causing SCM scans of PNPM projects to be mis-attributed to NPM or Yarn.
This is only occurring in the regional hosted environments (customers that login on sites other than app.snyk.io)
Symptoms:
* PNPM projects may be detected as NPM projects, or display import errors due to missing yarn.lock files.
* Customers using set-and-forget may notice that projects previously detected as PNPM are deactivated and new NPM projects are created.
* Customers may notice a change in dependency or vulnerability reports for these projects.
This does not affect customers on app.snyk.io
This does not affect customers using Snyk CLI to scan pnpm projects, where the PNPM option is enabled in snyk preview.

We will update with further information as it becomes available

Latest Snyk outages

Container scans are degraded for images containing JAR files - 4 days ago
Snyk Recurring Tests Degraded - 6 days ago
Snyk Code Degradation - 7 days ago
Snyk SCM/API Import Degradation - 13 days ago
Open Source Maven scans degraded - 25 days ago

The Status Page Aggregator with Early Outage Detection

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 5420 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook