Software Composition Analysis (SCA) apps from @synksec and @whitesourcesoftware
If you want to detect vulnerable dependencies in your GitHub project with snyk you will need to make sure your project has a manifest file so snyk can decide what frameworks you are including.
To get proper test results and create Snyk projects, at least one of the relevant manifest files must be present in the tested folder (CLI), repository (SCM) or app (serverless).
You get a great report showing you issues in your projects
You can also connect Snyk to BitBucket, Docker and GitLab