Difference between revisions of "GitHub dependabot"

From wikieduonline
Jump to navigation Jump to search
 
(11 intermediate revisions by 2 users not shown)
Line 3: Line 3:
 
* Homepage: https://github.com/dependabot
 
* Homepage: https://github.com/dependabot
 
* Configuration: <code>[[.github/]][[dependabot.yml]]</code>
 
* Configuration: <code>[[.github/]][[dependabot.yml]]</code>
 +
* Dependabot options in [[Code security and analysis]]:
 +
{{Dependabot options TOC}}
 +
  
 
== Changelog ==
 
== Changelog ==
Line 19: Line 22:
 
* [[Amazon Inspector]] ([[AWS timeline|Oct 2015]])
 
* [[Amazon Inspector]] ([[AWS timeline|Oct 2015]])
 
* <code>[[npm audit]]</code>
 
* <code>[[npm audit]]</code>
* [[GitHub Advanced Security]]
+
* [[GitHub Advanced Security (GHAS)]] include [[code scanning]] alerts
 
* [[Renovate]] bot
 
* [[Renovate]] bot
 +
* [[ECR scanning]]
 +
* [[Docker Scout]]
 +
* [[Container scanning]]
 +
* [[Grype]]
  
 
== See also ==
 
== See also ==
 
* {{Dependabot}}
 
* {{Dependabot}}
 
* {{GitHub security}}
 
* {{GitHub security}}
 +
* {{Bot}}
  
  
 
[[Category:GitHub]]
 
[[Category:GitHub]]

Latest revision as of 10:02, 8 November 2024

wikipedia:Dependabot (May 2019) automated dependency updates built into GitHub since May 2019.[1]


Changelog[edit]

Activities[edit]

if: ${{ github.actor == 'dependabot[bot]' }}

Related[edit]

See also[edit]

  • https://github.blog/2019-05-23-introducing-new-ways-to-keep-your-code-secure/
  • https://github.blog/2020-09-30-code-scanning-is-now-available/
  • Advertising: