scan_dependencies
Scan project lockfiles and manifests to detect known vulnerable dependencies. Filter results by severity threshold for prioritization.
Instructions
Scan lockfiles and manifests for known vulnerable dependencies (SCA). Uses osv-scanner when installed.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| path | Yes | Absolute or relative path to the project directory to scan. | |
| severity_threshold | No | Minimum severity to include in results (default: info — all severities). |