spark icon indicating copy to clipboard operation
spark copied to clipboard
verified publisher icon dotnet

Resolves: Add security and versioning dependency alerts

Open aleks-ivanov opened this issue 4 years ago • 5 comments

  • add dependabot.yml which automatically enables native Dependabot's dependency versioning scanner and dependency update PRs bot by declaring dependency ecosystems and sources in the project. For dependency security vulnerabilities scanner and vulnerable dependency update PRs bot, enable "Dependabot alerts" and "Dependabot security updates"

  • should you decide that certain people on your team should take care of the PRs that Dependabot creates, use the two attributes assignees and reviewers to automatically set personnel respectively.

Resolves #943

aleks-ivanov avatar May 25 '21 14:05 aleks-ivanov

Hi @aleks-ivanov, are you currently working on this item?

wudanzy avatar Dec 18 '24 08:12 wudanzy

/AzurePipelines run

wudanzy avatar Mar 31 '25 02:03 wudanzy

Azure Pipelines successfully started running 1 pipeline(s).

azure-pipelines[bot] avatar Mar 31 '25 02:03 azure-pipelines[bot]

/AzurePipelines run

wudanzy avatar Sep 22 '25 07:09 wudanzy

Azure Pipelines successfully started running 1 pipeline(s).

azure-pipelines[bot] avatar Sep 22 '25 07:09 azure-pipelines[bot]