Ketryx built-in dependency scanning currently only supports direct dependencies of a project, e.g. top-level dependencies. To enable transitive dependency management, you'll need to perform the following steps:
- Using the Build API, submit SPDX (Software Package Data Exchange) files in JSON format that contain all dependencies of a project, including transitive dependencies.
- Additionally, as the organization owner, you will need to enable transitive dependencies in your advanced settings.
Comments
0 comments
Article is closed for comments.