AntiPattern
Dependency Scan Misleading Results
dependency-scan-false-positives-exclusion-mismatch
Resolved dependency graph scanning plus OWASP/Snyk database matching can flag vulnerabilities from transitive artifacts and stale metadata, while exclusion rules differ by scan type, causing false positives and missed remediation review risk.