sbt
plugins or examining your build.sbt
, and compares the versions of every direct and transitive dependency in your project against Snyk's Maven vulnerability database.sbt-dependency-graph
plugin which has been included in sbt
as a built-in plugin since sbt
1.4.addSbtPlugin()
, instead (see below).sbt-dependency-graph
as a global plugin so you can use it in any sbt
project.~/.sbt/0.13/plugins/plugins.sbt
for sbt
0.13 or ~/.sbt/1.0/plugins/plugins.sbt
for sbt
1.0+.project/plugins.sbt
of your project instead.sbt
version you are using, you must use the following command in the relevant plugins.sbt
file:addSbtPlugin("net.virtual-void" % "sbt-dependency-graph" % "0.10.0-RC1")
addDependencyTreePlugin
command which the sbt-dependency-graph
plugin docs recommend for sbt
1.4+. This is incompatible with the Snyk CLI. use the addSbtPlugin()
command as given above.sbt-dependency-graph
for use with the Snyk CLI, see the article "How to install the SBT dependency graph plugin to test Scala projects with Snyk CLI."sbt
as a package manager, Snyk analyzes your build.sbt
file, and so you must have this file in your repository before importing.