GitHub Community

GitHub Community Discussions Billing & Subscription Guide 💳
General shinybrightstar
GHAS Code Security Series - Part 1: Setting Up Organization-Wide Code Scanning
Discover vishaljsoni
🌌 GitHub Universe 2025 Community Release Recap
Announcements ebndev
🚢 Upcoming Webinar: Recapping Universe 2025 releases
Announcements queenofcorgis

Sort by: Latest activity

Discussions

You must be logged in to vote

Dependabot check in github actions
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
roisec asked Mar 3, 2022 in Code Security · Unanswered

2
You must be logged in to vote

Will dependabot rebase all PRs on schedule if I set rebase-strategy to disabled
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
engineforce asked Mar 18, 2022 in Code Security · Unanswered

0
You must be logged in to vote

GraphQL query - Filter on severity for dependabot alerts
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
gj-kristian asked Mar 16, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Provide security overview with a date filter and closed finding numbers
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
sumeshsasi asked Mar 16, 2022 in Code Security · Unanswered

0
You must be logged in to vote

dependabot wants to "upgrade" beta.406 to beta.66 (stylecop analyzers package)
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
fretje asked Mar 11, 2022 in Code Security · Unanswered

1
You must be logged in to vote

Security Overview filter by topic
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
samigt asked Mar 3, 2022 in Code Security · Unanswered

0
You must be logged in to vote

GH-integrated Dependabot uses the wrong branch
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
heoelri asked Feb 18, 2022 in Code Security · Unanswered

3
You must be logged in to vote

Link vulnerabilities with PRs
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
hfhbd asked Feb 26, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot alerts about library that isn't in repo
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
rsv-code asked Feb 20, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Feature request: Include update-type in security update commits
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
keattang asked Feb 23, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Link Custom PR to a dependabot entry
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
chrismo asked Feb 22, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Allow to exclude internal repositories
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
mkutz asked Feb 11, 2022 in Code Security · Unanswered

5
You must be logged in to vote

NPM list in Dependabot PRs
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
nielsvaneck asked Feb 15, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Per-dependency reviewers and labels
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
dipth asked Feb 10, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot should not do major updates by default
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
MattIPv4 asked Jan 22, 2022 in Code Security · Answered

4
You must be logged in to vote

Webhook events on security configurations
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
oran-legit asked Jan 16, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Show dependabot in @ suggestions when commenting
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
rafasoares asked Dec 31, 2021 in Code Security · Unanswered

0
You must be logged in to vote

Show count of commits in Dependabot PR summaries
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
danielcompton asked Dec 12, 2021 in Code Security · Unanswered

0
You must be logged in to vote

Enterprise: Dependabot/Advanced Security with API/Policy in Organisation
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Enterprise Discussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations Product Feedback Share your thoughts and suggestions on GitHub features and improvements Enterprise Admin Topics specifically related to GitHub Enterprise administration
Timmmy-nlb asked Nov 9, 2021 in Enterprise · Unanswered

0
You must be logged in to vote

[Feature request]: Add autocomplete for dependabot in its PRs
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
grossws asked Oct 29, 2021 in Code Security · Unanswered

0
You must be logged in to vote

github dependebot "create security update" doesn't work
Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
exx8 asked Aug 30, 2021 in Code Security · Unanswered

1
You must be logged in to vote

Make dependabot less noizy
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
abitrolly asked Oct 7, 2021 in Code Security · Answered

1
You must be logged in to vote

Dependabot and internal repos
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
tyson-benson asked Aug 24, 2021 in Code Security · Answered

1
You must be logged in to vote

dependabot.yml template could assume the package manager
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
Zerotask asked Sep 6, 2021 in Code Security · Unanswered

0