Speaking of which, it's useful to track what dependencies (and exact versions) were used in a build and ship this information with the binary.
This can be used to automatically identify if a binary was built against libraries affected by known vulnerabilities or that use obsolete protocol/file formats and needs updating.
