A combination of SAST and SCA: searching for security flaws in code of a project and its dependencies

SAST tools detect security flaws in the source code. SCA solutions look for dependencies with known vulnerabilities. 

Can we combine their functionality in one tool? Yes! How? Why would we need it? The talk will answer all these questions.