GitHub Community

Maintainer Month Update: Tackling Contribution Noise and Giving Maintainers More Control
Announcements moraesc
All GitHub Copilot plans are now on usage-based billing
Copilot News and Announcements GitHub Community Admin
Webinar Series: Usage-Based Billing with Confidence
Announcements GitHub Community Admin
👾 Microsoft Build 2026 Community Recap
Copilot News and Announcements ebndev

Discussions

You must be logged in to vote

NPM list in Dependabot PRs
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
nielsvaneck asked Feb 15, 2022 in Code Security · Unanswered

0
You must be logged in to vote

dependabot vs. dependabot-preview - detecting security vulnerabilities
Dependabot Automatically update dependencies to keep your project secure and up to date
vlastikcz asked Oct 10, 2019 in New to GitHub · Answered

2
You must be logged in to vote

Per-dependency reviewers and labels
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
dipth asked Feb 10, 2022 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot should not do major updates by default
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
MattIPv4 asked Jan 22, 2022 in Code Security · Answered

4
You must be logged in to vote

Will dependabot still scan archived repo?
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
Dingjie-Daniel-Yang asked Jan 14, 2022 in Apps, API and Webhooks · Answered

2
You must be logged in to vote

Show dependabot in @ suggestions when commenting
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
rafasoares asked Dec 31, 2021 in Code Security · Unanswered

0
You must be logged in to vote

Show count of commits in Dependabot PR summaries
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
danielcompton asked Dec 12, 2021 in Code Security · Unanswered

0
You must be logged in to vote

Enterprise: Dependabot/Advanced Security with API/Policy in Organisation
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Enterprise Discussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations Product Feedback Share your thoughts and suggestions on GitHub features and improvements Enterprise Admin Topics specifically related to GitHub Enterprise administration
Timmmy-nlb asked Nov 9, 2021 in Enterprise · Unanswered

0
You must be logged in to vote

[Feature request]: Add autocomplete for dependabot in its PRs
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
grossws asked Oct 29, 2021 in Code Security · Unanswered

0
You must be logged in to vote

Make dependabot less noizy
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
abitrolly asked Oct 7, 2021 in Code Security · Answered

1
You must be logged in to vote

Opt-in to allow writable tokens on Dependabot workflows
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
asciimike asked Jun 1, 2021 in Actions · Answered

2
You must be logged in to vote

Dependabot and internal repos
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
tyson-benson asked Aug 24, 2021 in Code Security · Answered

1
You must be logged in to vote

dependabot.yml template could assume the package manager
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
Zerotask asked Sep 6, 2021 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot cannot update this dependency (Private Registry)
Dependabot Automatically update dependencies to keep your project secure and up to date
zachwright asked Jun 16, 2020 in New to GitHub · Answered

13
You must be logged in to vote

Dependenabot, update from private packages registry fails
Packages Host your dependencies, libraries, and production-ready code, right from your repository Dependabot Automatically update dependencies to keep your project secure and up to date Codespaces Your development environment, in the cloud. Run VS Code and code on GitHub's cloud platform, Product Feedback Share your thoughts and suggestions on GitHub features and improvements
Aurelien30000 asked Mar 6, 2021 in Actions · Answered

1
You must be logged in to vote

GitHub-native Dependabot can't merge to protect branch
Dependabot Automatically update dependencies to keep your project secure and up to date
ZebraFlesh asked Aug 23, 2020 in New to GitHub · Answered

7
You must be logged in to vote

Dependabot parser treat hours as integers
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
mondeja asked Nov 26, 2020 in Actions · Answered

2
You must be logged in to vote

Dependabot alerts
Dependabot Automatically update dependencies to keep your project secure and up to date
c0ze asked Oct 22, 2020 in New to GitHub · Answered

2
You must be logged in to vote

GH Actions not triggering for Dependabot PRs
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
gerryfletch asked Oct 16, 2020 in Actions · Answered

1
You must be logged in to vote

Need help with Dependabot and Github Actions
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
dihmeetree asked Mar 1, 2020 in Actions · Answered

2
You must be logged in to vote

How to trigger the CI when Dependabot open a pull request?
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
diegobernardes asked Aug 10, 2020 in Actions · Answered

2