Fully open-source security audit for project dependencies based on known vulnerabilities and advisories.