AntiPattern
Transitive Scan Mismatch
transitive-scan-and-exclusion-mismatch
Vulnerability findings persist or misclassify because scanners evaluate the resolved dependency graph (including transitive artifacts) and/or use separate exclusion mechanisms, so updated direct dependencies and intended filters don’t remove or accurately scope the flagged matches.