Ignore test dependencies


#1

Can DepShield ignore dependencies that are only used in the test scope? These shouldn’t impact security in a production setting.


#2

Hi @mrog,

As you have noticed, DepShield currently reports on components in all scopes that may not be relevant to your production deployments. This forces you to close issues created that are not applicable. Updating to only report on applicable scopes is being entertained but I have no predictions if it will be implemented.