Clarify which dependencies are updated by default (#20455)

2025-12-30 03:01:36 -05:00 · 2022-09-12 16:19:52 +02:00
parent a3a13de93d
commit f4fc5b2c9b
1 changed files with 1 additions and 1 deletions
--- a/data/reusables/dependabot/default-dependencies-allow-ignore.md
+++ b/data/reusables/dependabot/default-dependencies-allow-ignore.md
@@ -1 +1 @@
-By default all dependencies that are explicitly defined in a manifest or lock file are kept up to date. You can use `allow` and `ignore` to customize which dependencies to maintain with version updates. {% data variables.product.prodname_dependabot %} checks for all allowed dependencies and then filters out any ignored dependencies or versions. So a dependency that is matched by both an `allow` and an `ignore` will be ignored.
+By default all dependencies that are explicitly defined in a manifest are kept up to date by {% data variables.product.prodname_dependabot %} version updates. In addition, {% data variables.product.prodname_dependabot %} security updates also update vulnerable dependencies that are defined in lock files. You can use `allow` and `ignore` to customize which dependencies to maintain. {% data variables.product.prodname_dependabot %} checks for all allowed dependencies and then filters out any ignored dependencies or versions. So a dependency that is matched by both an `allow` and an `ignore` will be ignored.