A single pipeline can run code scans and dependency scans across many repositories. If not set up right, scan results may go to the wrong repository.