This is a full security remediation workflow that scans your code with Snyk, applies fixes, validates them, and optionally creates a PR. It handles both SAST and SCA vulnerabilities in two modes: single issue at a time or batch mode that lets you fix multiple vulnerabilities in priority order. The implementation is thorough, with explicit rules for when to abort (like when Snyk reports no fix path for an SCA issue), grouped instance handling for code vulnerabilities, and smart detection of what you're asking for based on keywords like CVE IDs or vulnerability types. Requires Snyk MCP server and authenticated account. If you're already using Snyk and want automated fixes rather than just scan reports, this compresses what would be a manual multi-step process into one request.
npx skills add https://github.com/snyk/studio-recipes --skill snyk-fix