GitHub Community

Accessibility Developer Guide: Getting Started with GitHub Copilot Custom Agents for Accessibility
Accessibility mlama007
Understanding Data Replication in High Availability Configurations for GitHub Enterprise Server
Discover: GitHub Best Practices regmontanhani
GitHub Community Discussions: Category Restructure Complete 🎉
Announcements samus-aran
[GHAS CodeQL Series] - Part 2: Implementing Alert-Mode Repository Rulesets
Discover: GitHub Best Practices vishaljsoni

Discussions

You must be logged in to vote

Expose dependabot_malware_alerts in the REST API (security_and_analysis)
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements source:ui Discussions created via Community GitHub templates
OriginalMHV asked Apr 9, 2026 in Code Security · Unanswered

1
You must be logged in to vote

[GA] Dependabot now supports pnpm workspace catalogs! 🎉
📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post
ghostinhershell asked Feb 5, 2025 in Code Security · Unanswered

3
You must be logged in to vote

Locking Down GitHub Enterprise: A Security-First Approach That Actually Works
Repositories The core of version-controlled code storage Apps API and Webhooks Discussions related to GitHub's APIs or Webhooks Security and Privacy Protect your repositories and data with GitHub's security and privacy features Dependabot Automatically update dependencies to keep your project secure and up to date Security Overview Summary of your repository's security status including vulnerabilities and security advisories Code Security Build security into your GitHub workflow with features to keep your codebase secure Enterprise Discussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations GHAS Discussions related to GitHub Advanced Security Best Practices Best practices, tips & tricks, and articles from GitHub and its users Show & Tell Discussions where community members share their projects, experiments, or accomplishments OAuth apps User-based integrations with coarse-grained permissions GitHub Well-Architected Our definitive reference for applying design thinking when deploying the GitHub platform.
jmassardo started Dec 17, 2025 in Discover: GitHub Best Practices

13
You must be logged in to vote

Dependabot dependency scope yarn support
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
David-Hart-i2 asked Jul 11, 2022 in Code Security · Unanswered

3
You must be logged in to vote

Automatically Update Bun Dependencies with Dependabot
📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post
ghostinhershell asked Feb 25, 2025 in Code Security · Unanswered

2
You must be logged in to vote

Configuring Dependabot with Reusable Workflows
Actions Build, test, and automate your deployment pipeline with world-class CI/CD Dependabot Automatically update dependencies to keep your project secure and up to date Best Practices Best practices, tips & tricks, and articles from GitHub and its users
joshjohanning started Sep 18, 2024 in Discover: GitHub Best Practices

2
You must be logged in to vote

Securing your public GitHub Repos for Free!
Dependabot Automatically update dependencies to keep your project secure and up to date Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure GHAS Discussions related to GitHub Advanced Security Best Practices Best practices, tips & tricks, and articles from GitHub and its users
potaders started Jul 11, 2024 in Discover: GitHub Best Practices

5
You must be logged in to vote

Let Dependabot respect commit hashes
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
guerda asked Aug 11, 2022 in Code Security · Unanswered

1
You must be logged in to vote

Limiting of Version Leaps
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
lwbrown42 asked Mar 29, 2022 in Code Security · Unanswered

1
You must be logged in to vote

Concerns about Access to Secrets in Workflows
Actions Build, test, and automate your deployment pipeline with world-class CI/CD Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
landongrindheim asked Aug 23, 2022 in Code Security · Unanswered

19
You must be logged in to vote

Dependabot: Do grouped version updates work across multiple entries?
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
Andre601 asked Jun 30, 2023 in Other Feature Feedback, Questions, & Ideas · Unanswered

4
You must be logged in to vote

dotnet local tool support for NuGet
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
xt0rted asked Mar 29, 2022 in Code Security · Unanswered

1
You must be logged in to vote

Disable dependabot?
Dependabot Automatically update dependencies to keep your project secure and up to date
AstroSquared asked Nov 15, 2020 in New to GitHub · Answered

9
You must be logged in to vote

Dependabot Support for Gradle Lockfiles is Now Generally Available
🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post
ghostinhershell asked Jun 24, 2025 in Code Security · Unanswered

2
You must be logged in to vote

📣 Exciting news for GitHub Advanced Security!
Dependabot Automatically update dependencies to keep your project secure and up to date Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Secret Scanning Detect and prevent the exposure of sensitive information in your code Code Security Build security into your GitHub workflow with features to keep your codebase secure Enterprise Discussions related to GitHub Enterprise Cloud, Enterprise Server and Organizations GHAS Discussions related to GitHub Advanced Security Changelog A discussion post associated with a Changelog post
tuves asked Mar 4, 2025 in Code Security · Unanswered

36
You must be logged in to vote

Dependabot Now Supports Configuration of a Minimum Package Age 🤖
Enhancement An idea, feature request, or improvement to a GitHub feature 🚀 Shipped A feature has been released Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post
ghostinhershell asked Jul 8, 2025 in Code Security · Unanswered

0
You must be logged in to vote

Dependabot: Single Pull Request for Multi-Ecosystem Support 🚀
Enhancement An idea, feature request, or improvement to a GitHub feature 🚀 Shipped A feature has been released Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell Discussions where community members share their projects, experiments, or accomplishments Changelog A discussion post associated with a Changelog post
ghostinhershell asked Jul 8, 2025 in Code Security · Unanswered

0
You must be logged in to vote

❕ Upcoming Change: Dependabot Compute Migration to GitHub Actions
📣 ANNOUNCEMENT Announcements from the GitHub Community team Actions Build, test, and automate your deployment pipeline with world-class CI/CD Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post
ghostinhershell asked Jun 23, 2025 in Code Security · Unanswered

1
You must be logged in to vote

Dependabot Metrics Page (Private Preview): Helping GHAS Code Security Users Prioritize Vulnerabilities
🚀 Shipped A feature has been released 📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post
ghostinhershell asked Jun 24, 2025 in Code Security · Unanswered

0
You must be logged in to vote

"Dependabot updates are paused" because "you haven't used Dependabot in a while"
Bug GitHub or a GitHub feature is not working as intended Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure
alexpdp7 asked Apr 1, 2023 in Code Security · Unanswered

8
You must be logged in to vote

Dependabot Alerts now show vulnerable function calls
📣 ANNOUNCEMENT Announcements from the GitHub Community team Beta A feature that is in preview per: https://github.com/orgs/community/discussions/141918 Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
erinhav asked Apr 15, 2022 in Code Security · Unanswered

1
You must be logged in to vote

Dependabot errors when npmAlwaysAuth is true
Bug GitHub or a GitHub feature is not working as intended Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure npm Discussions around programming langages, open source and software development
apgrucza asked Feb 13, 2024 in npm · Unanswered

8
You must be logged in to vote

Separate schedule per dependencies
Dependabot Automatically update dependencies to keep your project secure and up to date Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Share your thoughts and suggestions on GitHub features and improvements
radeksimko asked Apr 25, 2022 in Code Security · Unanswered

1
You must be logged in to vote

Dependabot: trust individual external code registries
Dependabot Automatically update dependencies to keep your project secure and up to date Product Feedback Share your thoughts and suggestions on GitHub features and improvements
TALlama asked Sep 21, 2022 in Code Security · Unanswered

3
You must be logged in to vote

dependabot e-mails unreadable due to HTML escaping
Bug GitHub or a GitHub feature is not working as intended Accessibility Making GitHub useable for members of the disability community Dependabot Automatically update dependencies to keep your project secure and up to date
Malvineous asked Feb 24, 2025 in Accessibility · Unanswered

6