SCA Delta Scan
We have dramatically cut the time of SCA scans by introducing the new Delta scan feature. When rescanning an existing project, if the manifest files haven’t been changed since the last scan, then we skip the dependency resolution process. This can cut scan times by up to 95% without detracting from the accuracy of the scan.
Once a week a full scan is enforced even if no changes were detected in the manifest files. This is intended to identify version changes caused by use of ranged versions.
When a scan runs as a Delta scan, an indication is shown in the Resolving Info dialog in the SCA scan results viewer.
Limitations:
Only applies to scans run in the cloud, not to scans using SCA Resolver.
Supported for all languages and package managers for which dependency resolution is done using manifest files except for C and C++.
Does not apply to languages for which dependency resolution is done by file analysis (fingerprint method).