Dependency Configurations

dependency configurations allow users to adjust the settings for dependency detection, depth, as well as tree creation dependency configurations use lock file enable this setting to always ignore non lock manifests if a lock file is detected lock vs non lock manifests docid 0fynw72sy9fcmxwpmfivc contains more information about the usage of lock files when disabled non lock files will be scanned and lock files will be ignored when enabled lock files will be scanned any non lock manifests found will be ignored if they support a corresponding lock file format if a manifest which does not have a corresponding lock file format it will be scanned scan full dependency tree this setting is enabled by default for all new accounts disable this setting to restrict soos scans to direct dependencies only include dev/test dependencies including dev dependencies may increase the time each scan takes to complete, and may include issue that do not need to be addressed, in some instances container dependency source controls dependency parsing and dependency tree resolution for container scans requires the container add on see subscribing to soos products docid\ j40dn4nwvdyy7vurceq4s to make changes to your plan sbom dependency source controls dependency parsing and dependency tree resolution for sbom scans requires the sbom manager add on see subscribing to soos products docid\ j40dn4nwvdyy7vurceq4s to make changes to your plan auto link sbom external document references automatically create dependent projects docid\ fjph3bw6wh7aa5qvapj0m links when sboms with external document references (references to other sboms) are encountered and the referenced sbom has already been scanned by soos requires the sbom manager add on see subscribing to soos products docid\ j40dn4nwvdyy7vurceq4s to make changes to your plan