We just disclosed a widespread critical vulnerability called Zip Slip. It may affect you –
Snyk supports testing and fixing Scala projects that have their dependencies managed by sbt. Support is available for GitHub repositories, and via the Snyk CLI.
Note: To use the Snyk CLI, you will need to first install the sbt-dependency-graph plugin.
We scan Scala projects by examining your build.sbt to compare the specific versions of every direct and deep dependency in your project against our Maven vulnerability database.