If the dependency information reported by the dependency graph is not what you expected, there are a number of points to consider, and various things you can check.| GitHub Docs
Find and fix vulnerable dependencies you rely on with Dependabot.| GitHub Docs
If the dependency information reported by GitHub is not what you expected, there are a number of points to consider, and various things you can check.| GitHub Docs
Dependabot can fix vulnerable dependencies for you by raising pull requests with security updates.| GitHub Docs