Merge branch 'tell-about-scanning-of-transitive-dependencies' into 'master'

Say that Dependency Scanning scans transitive dependencies See merge request gitlab-org/gitlab!25593

Merge branch 'tell-about-scanning-of-transitive-dependencies' into 'master'
Say that Dependency Scanning scans transitive dependencies See merge request gitlab-org/gitlab!25593
ad14ace2 · Achilleas Pipinellis · 289d407c · d472e717 · ad14ace2
Commit ad14ace2 authored Mar 03, 2020 by Achilleas Pipinellis
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 0 deletions

doc/user/application_security/dependency_scanning/index.md doc/user/application_security/dependency_scanning/index.md +1 -0

No files found.
--- a/doc/user/application_security/dependency_scanning/index.md
+++ b/doc/user/application_security/dependency_scanning/index.md
@@ -14,6 +14,7 @@ application is using an external (open source) library which is known to be vuln

 If you are using [GitLab CI/CD](../../../ci/README.md), you can analyze your dependencies for known
 vulnerabilities using Dependency Scanning.
+All dependencies are scanned, including the transitive dependencies (also known as nested dependencies).

 You can take advantage of Dependency Scanning by either [including the CI job](#configuration)
 in your existing `.gitlab-ci.yml` file or by implicitly using