Find and fix vulnerable dependencies you rely on with Dependabot.| GitHub Docs
GitHub provides a variety of tools you can use to audit and monitor actions taken in response to security alerts.| GitHub Docs
Dependabot auto-triage rules are a powerful tool to help you better manage your security alerts at scale. GitHub presets are rules curated by GitHub that you can use to filter out a substantial amount of false positives. Custom auto-triage rules provide control over which alerts are ignored, snoozed, or trigger a Dependabot security update to resolve the alert.| GitHub Docs
Enable Dependabot alerts to be generated when a new vulnerable dependency is found in one of your repositories.| GitHub Docs
Optimize how you receive notifications about Dependabot alerts.| GitHub Docs
Dependency graph supports a variety of ecosystems.| GitHub Docs
If GitHub discovers insecure dependencies in your project, you can view details on the Dependabot alerts tab of your repository. Then, you can update your project to resolve or dismiss the alert.| GitHub Docs
Dependabot can fix vulnerable dependencies for you by raising pull requests with security updates.| GitHub Docs
Choose the type of activity on GitHub that you want to receive notifications for and how you want these updates delivered.| GitHub Docs
You can use the dependency graph to identify all your project's dependencies. The dependency graph supports a range of popular package ecosystems.| GitHub Docs