Git Hub Advanced Scanning - dependency scanning - libman.json #120191
Unanswered
pkemp11
asked this question in
Code Security
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Select Topic Area
Question
Body
We have enabled advanced security in our Azure dev ops setup and we've noticed for our .net core application, the dependency scanner is not detecting any client side libraries, even though we know we have issues.
Looking into the requirements i suspect this is because we use libman.json to define out client side libraries, built into VS, which isn't supported, when reviewing the documentation as far as i can tell.
So i guess we may have to use npm package manager or something for the scanning to determine our client side libraries, given I'm presuming it doesn't just scan the folders to work this out?
Beta Was this translation helpful? Give feedback.
All reactions