You can publish a security advisory to alert your community about a security vulnerability in your project.| GitHub Docs
You can edit the metadata and description for a repository security advisory if you need to update details or correct errors.| GitHub Docs
You can create a draft security advisory to privately discuss and fix a security vulnerability in your open source project.| GitHub Docs
Dependabot can fix vulnerable dependencies for you by raising pull requests with security updates.| GitHub Docs
GitHub sends Dependabot alerts when we detect that your repository uses a vulnerable dependency.| GitHub Docs
You can give instructions for how to report a security vulnerability in your project by adding a security policy to your repository.| GitHub Docs
Common vulnerabilities and Exposures (CVE)| www.cve.org
Common vulnerabilities and Exposures (CVE)| www.cve.org