Adopt
Dependency vulnerability scanning. In active use at the pipeline level. Provides automated scanning of third-party dependencies across the Python ML stack and mobile SDKs. Part of the vulnerability management lifecycle defined in Layer 13 (Security Architecture): Snyk finding → triage → remediation → closure.
The NHS DSP Toolkit and Cyber Essentials Plus baseline both require a demonstrable approach to dependency vulnerability management.