Pinned to Code Security

• 19 You must be logged in to vote

  🤖

  [Public Preview] Security Campaigns w/ Copilot Autofix 🧑‍💻

  👂 Feedback Wanted GitHub is asking for your feedback 📣 ANNOUNCEMENT Announcements from the GitHub Community team Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Code Security Build security into your GitHub workflow with features to keep your codebase secure Copilot Code accurately and faster with your AI powered pair-programmer. Changelog A discussion post associated with a Changelog post Universe 2024 githubuniverse.com Oct. 29-30

  ghostinhershell asked Oct 23, 2024 in Code Security · Unanswered

  9
• 4 You must be logged in to vote

  🤖

  [Deprecation] Dependabot will no longer support npm v6

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Changelog A discussion post associated with a Changelog post

  ghostinhershell asked Jan 23, 2025 in Code Security · Unanswered

  0
• 4 You must be logged in to vote

  🤖

  The Security Sync: What’s New in Code Security 🤖

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Show & Tell

  ghostinhershell asked Jan 23, 2025 in Code Security · Unanswered

  1
• 3 You must be logged in to vote

  🤖

  [GA] Dependabot now supports pnpm workspace catalogs! 🎉

  📣 ANNOUNCEMENT Announcements from the GitHub Community team Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure

  ghostinhershell asked Feb 5, 2025 in Code Security · Unanswered

  0

Discussions

• 50 You must be logged in to vote

  🤖

  CVE-2021-44228 Advisory

  Product Feedback

  mih-kopylov asked Dec 12, 2021 in Code Security · Answered

  

  

  

  

  7
• 36 You must be logged in to vote

  🤖

  Erroneous GitHub warning messages about Multi-Factor Authentication

  Bug Something isn't working correctly Code Security Build security into your GitHub workflow with features to keep your codebase secure

  cosmic-linden asked Jun 20, 2024 in Code Security · Answered

  

  

  

  

  41
• 25 You must be logged in to vote

  🤖

  🆕 Dependency Review Action (Beta) Feedback - [Update: Released]

  👂 Feedback Wanted GitHub is asking for your feedback 📣 ANNOUNCEMENT Announcements from the GitHub Community team Beta A feature that's in testing Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  courtneycl asked Apr 6, 2022 in Code Security · Closed · Answered

  

  

  

  

  19
• 20 You must be logged in to vote

  🤖

  Dependabot alerts should support conventional major version tags with GitHub Actions

  Bug Something isn't working correctly Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure

  bigdaz asked May 5, 2023 in Code Security · Answered

  

  

  1
• 20 You must be logged in to vote

  🤖

  Suggestion/Feature Request: Code Scanning for Groovy

  Code Scanning Code scanning: our code analysis features, powered by the CodeQL engine Product Feedback

  MPWTraining asked Aug 18, 2022 in Code Security · Answered

  

  

  

  

  6
• 18 You must be logged in to vote

  🤖

  Dependency graph support for Gradle

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  vaibhawk-kr asked Feb 7, 2022 in Code Security · Answered

  

  

  

  

  12
• 17 You must be logged in to vote

  🤖

  Respect granularity of SemVer tag previously used

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  bewuethr asked Mar 2, 2022 in Code Security · Answered

  

  

  1
• 17 You must be logged in to vote

  🤖

  Re-Opening Security Alerts with Comments

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  hiEntropy asked Jun 7, 2024 in Code Security · Answered

  

  

  

  

  5
• 16 You must be logged in to vote

  🤖

  Why GitHub sends my hardcoded secrets to the providers when Secret Scanning is disabled?

  Secret Scanning Code Security Build security into your GitHub workflow with features to keep your codebase secure Question

  nir-valtman asked May 11, 2023 in Code Security · Answered

  

  

  1
• 15 You must be logged in to vote

  🤖

  2FA is the last nail in the coffin

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  FrozenVoid asked Aug 15, 2023 in Code Security · Answered

  

  

  

  

  3
• 9 You must be logged in to vote

  🤖

  Workshop: GitHub DevSecOps Fundamentals [SEC2745W]

  Code Security Build security into your GitHub workflow with features to keep your codebase secure DevOps Bring teams together to deliver better software, faster. Universe 2023 All things related to our global developer conference, Universe 2023 Speaker Authored by GitHub Universe speakers: Ask questions or provide feedback on the session/workshop

  igwejk asked Nov 7, 2023 in Code Security · Answered

  

  

  

  

  8
• 9 You must be logged in to vote

  🤖

  Dependabot cannot run CodeQL with error: 1 configuration not found

  Bug Something isn't working correctly Code Security Build security into your GitHub workflow with features to keep your codebase secure

  ianhirschfeld asked May 1, 2024 in Code Security · Answered

  

  

  

  

  8
• 9 You must be logged in to vote

  🤖

  GitHub Action needed: GitHub Personal Access Token found in gist, any app using this secret may be affected

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Question

  Jemt asked Aug 5, 2024 in Code Security · Closed · Answered

  

  

  

  

  3
• 8 You must be logged in to vote

  🤖

  Do gradle dependencies submitted via dependency submission API receive Dependabot security alerts?

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Question

  tiurin asked Jan 27, 2023 in Code Security · Answered

  

  

  

  

  3
• 8 You must be logged in to vote

  🤖

  Make dependabot less noizy

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  abitrolly asked Oct 7, 2021 in Code Security · Answered

  

  

  1
• 7 You must be logged in to vote

  🤖

  Dependabot on Actions

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback Changelog A discussion post associated with a Changelog post

  carlincherry asked Apr 22, 2024 in Code Security · Answered

  

  

  

  

  32
• 7 You must be logged in to vote

  🤖

  In my private repo, i see commits by another USER!!

  Bug Something isn't working correctly Code Security Build security into your GitHub workflow with features to keep your codebase secure

  adamd1985 asked Oct 17, 2023 in Code Security · Answered

  

  

  

  

  23
• 6 You must be logged in to vote

  🤖

  Security overview - Security Managers

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Security Manager Product Feedback

  samigt asked Mar 18, 2022 in Code Security · Answered

  

  

  

  

  7
• 6 You must be logged in to vote

  🤖

  What is external code execution in the insecure-external-code-execution option on Dependabot?

  Dependabot Code Security Build security into your GitHub workflow with features to keep your codebase secure Question

  yykamei asked Jun 21, 2023 in Code Security · Closed · Answered

  

  

  

  

  8
• 6 You must be logged in to vote

  🤖

  Push protection false positive, push declined (and it's not even enabled)

  Bug Something isn't working correctly Code Security Build security into your GitHub workflow with features to keep your codebase secure

  m417z asked Mar 29, 2024 in Code Security · Answered

  

  

  2
• 5 You must be logged in to vote

  🤖

  "Security Risk" overview: inclusion of archived repositories

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  SafeEval asked Dec 9, 2022 in Code Security · Answered

  

  

  2
• 5 You must be logged in to vote

  🤖

  How to turn off dependabot PRs but still get alerts?

  Dependabot Product Feedback

  nello asked Jul 11, 2022 in Code Security · Answered

  

  

  

  

  9
• 5 You must be logged in to vote

  🤖

  Is a deleted branch on GitHub guaranteed to not leak data?

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Question

  Utsuhoagie asked Oct 15, 2023 in Code Security · Answered

  

  

  

  

  7
• 5 You must be logged in to vote

  🤖

  Content of CVE text, and propagation of updates

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Question inactive This discussion has been automatically marked as inactive. This was formerly labeled stale.

  anargam asked Aug 18, 2024 in Code Security · Answered

  

  

  3
• 4 You must be logged in to vote

  🤖

  CodeQL - UI Based Configuration

  Code Security Build security into your GitHub workflow with features to keep your codebase secure Product Feedback

  chejn asked Jan 27, 2023 in Code Security · Answered

  

  

  1