Scan project dependencies for vulnerabilities using OSV database
Upload Gemfile.lock, package-lock.json, or requirements.txt