AntiPattern
Dependency Scan False Confidence
dependency-scan-false-confidence
Vulnerability findings get produced from resolved dependency and vulnerability database matches (including transitive artifacts) or incomplete/exclusion-aware scanning, so teams treat flagged results as actionable even when they are false positives, mis-scoped, or supply-chain/backdoor-like issues.