Org-level centralized private registry configuration for Dependabot [GA]

Open glider-bot opened this issue 8 months ago • 1 comments

Value Prop

To enable Dependabot to use packages in private registries, GitHub Advanced Security users have to set up credentials in a dependabot.yml for every repository, which takes a long time for lots of repositories.

Expected Outcome

This feature allows GitHub Advanced Security users to configure Dependabot to access their private registries from the org level.

Apr 24 '25 17:04 glider-bot

🚢 This has shipped: https://github.blog/changelog/2025-07-22-centralized-private-registry-configuration-for-dependabot-is-now-generally-available/

Leaving open to track for GHES release!

Jul 25 '25 16:07 ankneis