roadmap icon indicating copy to clipboard operation
roadmap copied to clipboard
verified publisher icon github

Expose information about development dependencies in Dependabot alerts

Open github-product-roadmap opened this issue 3 years ago • 1 comments

Summary

In ecosystems like npm where developers can indicate that a certain dependency is used during development only (a devDependency), developers have asked for a way to understand when Dependabot alerts are related only to a development dependency. In this initial ship, we expect to add support for a label on alerts that concern development dependencies to make it easier to filter, triage, or sort alerts.

Intended Outcome

No response

How will it work?

No response

github-product-roadmap avatar Mar 15 '22 22:03 github-product-roadmap

This has shipped to dotcom! 🚢 https://github.blog/changelog/2022-06-23-dependabot-alerts-filter-alerts-by-the-scope-of-the-dependency-runtime-and-development/

ankneis avatar Jun 24 '22 17:06 ankneis

🚢 This has shipped with the GHES 3.7 release: https://docs.github.com/en/[email protected]/admin/release-notes

ankneis avatar Nov 30 '22 17:11 ankneis