Replies: 1 comment
-
|
You can watch #2603 |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
It's not clear to me whether the tool has the functionality to fail the pipeline only when new vulnerabilities are found in dependencies, instead of simply analyzing the entire repository again. This would make it possible to block only the introduction of new vulnerable dependencies without affecting already known problems.
Beta Was this translation helpful? Give feedback.
All reactions