We are about to roll out a new version of our Maven dependency resolution mechanism 🎉
You can expect to see more accurate packages and versions in Maven projects imported from Git, for example when using frameworks such as Spring Boot and Jackson that use
Note that when the upgrade is applied you may find that more vulnerabilities are reported for your projects. This is because the new dependency graph contains more accurate versions, which can be older and more vulnerable than the previous results.
This upgrade will be applied gradually to all Snyk organizations over the next few weeks.
No action is required from yourself, the updated results will appear when your project's daily recurring tests are run.