I recently read an article here about ‘hidden’ dependencies.
i wonder if grype alerts on this kind of vulnerabilities?
I recently read an article here about ‘hidden’ dependencies.
i wonder if grype alerts on this kind of vulnerabilities?
@TimBrown1611 Syft should surface these dependencies, with a version containing the URL.