How Dependency Scans Work
Dependency scans work with build tools to list all dependencies referenced by the application. This list, also called an SBOM, is then compared against a list of known vulnerable libraries.
#
How Runtime Dependency Scans WorkMany applications import libraries but do not actually use the libarary or only use a small portion of that code. Runtime Dependency Scans improve accuracy by watching what code the application loads and driving attention towards code that is actually used.