--app-vulns
flag by default. You are able to opt out of the flag in the container registry only. Do so by disabling the ‘detect application vulnerabilities’ toggle in the integration settings.--app-vulns
flag to detect vulnerabilities in your application dependencies from container images.--app-vulns
, you can also use the --nested-jars-depth=n
flag to set how many levels of nested jars Snyk will unpack. The implicit default is 1. I.e when specifying 2, it means that Snyk unzips jars in jars, 3 means Snyk unzips jars in jars in jars, etc.