From 2d57d955a5d01d87e16e7320880204bc6f40a863 Mon Sep 17 00:00:00 2001 From: Felicity Chapman Date: Sun, 22 Sep 2024 11:56:20 +0100 Subject: [PATCH] Remove references to redundant versions part 5 (Dependabot) (#52363) --- .../viewing-and-updating-dependabot-alerts.md | 5 ++--- .../about-supply-chain-security.md | 4 ---- data/reusables/dependabot/dependabot-actions-support.md | 2 +- 3 files changed, 3 insertions(+), 8 deletions(-) diff --git a/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md b/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md index 02c7714acf..635d4aa569 100644 --- a/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md +++ b/content/code-security/dependabot/dependabot-alerts/viewing-and-updating-dependabot-alerts.md @@ -217,8 +217,7 @@ You can view all open alerts, and you can reopen alerts that have been previousl ## Reviewing the audit logs for {% data variables.product.prodname_dependabot_alerts %} When a member of your organization {% ifversion not fpt %}or enterprise {% endif %}performs an action related to {% data variables.product.prodname_dependabot_alerts %}, you can review the actions in the audit log. For more information about accessing the log, see "[AUTOTITLE](/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/reviewing-the-audit-log-for-your-organization#accessing-the-audit-log){% ifversion not fpt %}" and "[AUTOTITLE](/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/accessing-the-audit-log-for-your-enterprise)."{% else %}."{% endif %} -{% ifversion dependabot-alerts-audit-log %} -![Screenshot of the audit log showing Dependabot alerts.](/assets/images/help/dependabot/audit-log-ui-dependabot-alert.png){% endif %} +![Screenshot of the audit log showing Dependabot alerts.](/assets/images/help/dependabot/audit-log-ui-dependabot-alert.png) -Events in your audit log for {% data variables.product.prodname_dependabot_alerts %} include details such as who performed the action, what the action was, and when the action was performed. {% ifversion dependabot-alerts-audit-log %}The event also includes a link to the alert itself. When a member of your organization dismisses an alert, the event displays the dismissal reason and comment.{% endif %} For information on the {% data variables.product.prodname_dependabot_alerts %} actions, see the `repository_vulnerability_alert` category in "[AUTOTITLE](/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/audit-log-events-for-your-organization#repository_vulnerability_alert){% ifversion not fpt %}" and "[AUTOTITLE](/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/audit-log-events-for-your-enterprise#repository_vulnerability_alert)."{% else %}."{% endif %} +Events in your audit log for {% data variables.product.prodname_dependabot_alerts %} include details such as who performed the action, what the action was, and when the action was performed. The event also includes a link to the alert itself. When a member of your organization dismisses an alert, the event displays the dismissal reason and comment. For information on the {% data variables.product.prodname_dependabot_alerts %} actions, see the `repository_vulnerability_alert` category in "[AUTOTITLE](/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/audit-log-events-for-your-organization#repository_vulnerability_alert){% ifversion not fpt %}" and "[AUTOTITLE](/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/audit-log-events-for-your-enterprise#repository_vulnerability_alert)."{% else %}."{% endif %} diff --git a/content/code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security.md b/content/code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security.md index 153ee534a9..60a35375f4 100644 --- a/content/code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security.md +++ b/content/code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security.md @@ -95,12 +95,8 @@ The term "{% data variables.product.prodname_dependabot %}" encompasses the foll {% endif %} -{% ifversion dependabot-actions-support %} - {% data reusables.dependabot.dependabot-actions-support %} For more information, see "[AUTOTITLE](/code-security/dependabot/dependabot-security-updates/about-dependabot-security-updates)." -{% endif %} - #### What are Dependabot alerts {% data variables.product.prodname_dependabot_alerts %} highlight repositories affected by a newly discovered vulnerability based on the dependency graph and the {% data variables.product.prodname_advisory_database %}, which contains advisories for known vulnerabilities. diff --git a/data/reusables/dependabot/dependabot-actions-support.md b/data/reusables/dependabot/dependabot-actions-support.md index c6276b40fc..5e860f449a 100644 --- a/data/reusables/dependabot/dependabot-actions-support.md +++ b/data/reusables/dependabot/dependabot-actions-support.md @@ -1 +1 @@ -{% ifversion dependabot-actions-support %}{% data variables.product.prodname_dependabot_security_updates %} can fix vulnerable dependencies in {% data variables.product.prodname_actions %}. When security updates are enabled, {% data variables.product.prodname_dependabot %} will automatically raise a pull request to update vulnerable {% data variables.product.prodname_actions %} used in your workflows to the minimum patched version.{% endif %} +{% data variables.product.prodname_dependabot_security_updates %} can fix vulnerable dependencies in {% data variables.product.prodname_actions %}. When security updates are enabled, {% data variables.product.prodname_dependabot %} will automatically raise a pull request to update vulnerable {% data variables.product.prodname_actions %} used in your workflows to the minimum patched version.