jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-21 19:06:49 -05:00
Code Issues Projects Releases Wiki Activity
57,162 Commits 28 Branches 1 Tag
copilot/add-changelog-file
Commit Graph

580 Commits

Author SHA1 Message Date
Sophie
afa177191a [2022-10-07]: Dependabot alerts to deprecate repository banners (i.e. "UI" notifications)- [GA] (#32274) 
Co-authored-by: github-actions <github-actions@github.com>
 2022-11-04 23:00:02 +00:00
Sophie
b07d1c370c [Improvement]: Refactor the articles about security advisories (#31807) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: github-actions <github-actions@github.com>
 2022-10-27 14:40:52 +00:00
Courtney Wilson
9ab6911944 Merge branch 'main' into use-consistant-wording-for-github-dot-com 2022-10-26 08:38:01 -05:00
Rachael Sewell
3e998f61d5 use azure blob storage for archived enterprise versions (#31883) 
Co-authored-by: Laura Coursen <lecoursen@github.com>
Co-authored-by: mchammer01 <42146119+mchammer01@users.noreply.github.com>
 2022-10-25 12:03:38 -07:00
mc
edcf908930 Update content/code-security/dependabot/dependabot-alerts/editing-security-advisories-in-the-github-advisory-database.md 2022-10-25 11:23:55 +01:00
mc
091519ec5d Merge branch 'main' into use-consistant-wording-for-github-dot-com 2022-10-25 08:45:35 +01:00
Anne-Marie
c0859e564a [2022-10-24]: Dependabot Updates supporting the increase-if-necessary versioning strategy for Python - [GA] #8372 (#31944) 2022-10-24 18:33:39 +00:00
indigolain
273c130d39 Use consistant wording for GitHub.com 2022-10-23 15:19:19 +09:00
Anne-Marie
0e03452f9c [2022-10-20]: Dependabot updates for Yarn v3 - [GA] (#31471) 
Co-authored-by: Jurre <jurre@github.com>
 2022-10-20 16:24:05 +00:00
Joe Clark
74a679dc51 Make product variables for Enterprise translation-friendly (#31628) 
Co-authored-by: Laura Coursen <lecoursen@github.com>
Co-authored-by: Evan Bonsignori <ebonsignori@github.com>
 2022-10-17 18:54:05 +00:00
mc
7542f27c8f Add "Best practice" article for writing security advisories (#31414) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-10-14 08:25:36 +00:00
mc
1db87819ee GitHub Advisory Database - add pub to list of supported ecosystems (#31560) 2022-10-10 14:38:12 +00:00
mc
90bac38ab1 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 2022-10-10 08:53:30 +01:00
Jeff Widman
97e82c0ca8 Cleanup docker registry docs 
Dependabot now supports:
1. Public AWS ECR: https://github.com/dependabot/dependabot-core/issues/4212
2. Microsoft Azure Container Registry: https://github.com/dependabot/dependabot-core/issues/3689
3. Any registry that uses HTTP Basic Auth instead of the OCI-spec-compliant central token service: https://github.com/dependabot/dependabot-core/issues/3689#issuecomment-1272037775

So now that we support all the major docker/container registry providers, there's no need to individually list them... this way we don't have folks wondering "my registry wasn't explicitly listed, is it supported?"

So switch to mention the two authentication schemes that we support and leave it at that.

Note: I left the `ecr-docker` example, as that is a one-off workaround we added to our internal code a long time ago because ECR isn't OCI compliant. So still needs the custom key to indicate the workaround should be used. Long term I hope ECR migrates to a more standard auth flow and we can eliminate that custom workaround, but they're not there yet.
 2022-10-07 14:02:45 -07:00
Victor Lin
d740a8257e Fix incorrect comment on GitHub Actions example 2022-10-06 13:28:39 -07:00
Hervé
dc2f715bc1 Fix wording 2022-10-05 09:44:41 +02:00
Christopher Kintner
82ed39fa01 note that dependabot.yml cannot be used to configure dependabot alerts (#31397) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2022-10-04 16:14:31 +00:00
Anne-Marie
37e362868b Edits to Notification Settings page following redesign (#30999) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: Sophie <29382425+sophietheking@users.noreply.github.com>
 2022-10-04 12:01:17 +00:00
mc
253e2a4666 Merge branch 'main' into mchammer01/dependabot-yml-weekly 2022-09-30 15:28:43 +01:00
mc
c4f1f8659f Update content/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot.md 
Co-authored-by: Sophie <29382425+sophietheking@users.noreply.github.com>
 2022-09-30 15:25:02 +01:00
PSJ
8783f5960a Update steps to create repo secrets (#18175) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2022-09-30 03:51:47 +00:00
mc
27911004ec Update keeping-your-actions-up-to-date-with-dependabot.md 2022-09-29 08:55:43 +01:00
mc
4cd7011c06 Update customizing-dependency-updates.md 2022-09-29 08:54:34 +01:00
mc
af0c7eea08 Update configuring-dependabot-version-updates.md 2022-09-29 08:48:52 +01:00
Isaac Brown
5bb464a343 Describe Actions usage for Dependabot (#30966) 
Co-authored-by: Matt Pollard <mattpollard@users.noreply.github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-09-28 15:12:26 +01:00
mc
6f20df6e58 Merge branch 'main' into patch-5 2022-09-26 12:21:32 +01:00
Jules
8de1b90f16 Limited support for a removed dependency - [GA] (#31035) 
Co-authored-by: Brad Isbell <bradify@github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-09-23 17:19:31 +00:00
mc
8e2fe3a971 Merge branch 'main' into update-docker-registry-note 2022-09-23 08:41:16 +01:00
mc
88dcb0b13e Apply suggestions from code review 2022-09-23 08:31:24 +01:00
mc
f027de12c2 Apply suggestions from code review 2022-09-23 08:14:26 +01:00
Tom Christensen
6f1a6f6fa7 Merge branch 'update-docker-registry-note' of https://github.com/pavera/docs into update-docker-registry-note 2022-09-22 19:32:58 +00:00
Tom Christensen
47839c164f Updating based on PR feedback 2022-09-22 19:29:40 +00:00
Sarah Schneider
b7f48ea2c1 Support GHAE internal-only semantic versioning (#29178) 
Co-authored-by: Peter Bengtsson <mail@peterbe.com>
Co-authored-by: Matt Pollard <mattpollard@users.noreply.github.com>
 2022-09-22 08:26:58 +02:00
Jeff Widman
f0428d6f69 Switch schedule.interval in examples to weekly 
Almost all the examples previously had `daily`.

However, we've heard from users that this often creates a little too much noise, so we changed the default on the back end to weekly.

Since people often copy/paste examples from help docs, this updates the examples to use `"weekly"` as well.

The only examples I didn't change were for `schedule.interval`, for obvious reasons.
 2022-09-20 13:27:43 -07:00
Josh Johanning
068a4edcfb Fixing Azure DevOps NuGet Dependabot config examples (#20617) 2022-09-20 09:14:59 +00:00
LingMan
d99733d486 Explicitly call out that Dependabot only updates direct dependencies by default (#20684) 
Co-authored-by: Jules <19994093+jules-p@users.noreply.github.com>
 2022-09-20 09:02:43 +00:00
Tom Christensen
64b32250e7 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 
Co-authored-by: Jeff Widman <jeff@jeffwidman.com>
 2022-09-19 11:14:56 -06:00
Tom Christensen
ae744b46f5 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 
Co-authored-by: Jeff Widman <jeff@jeffwidman.com>
 2022-09-19 11:13:59 -06:00
Tom Christensen
535ccaf29e Updating the intro to attempt to adhere to style guide 2022-09-16 09:20:01 +00:00
Tom Christensen
a4a66bb285 Adding GCR 2022-09-16 09:07:42 +00:00
Sophie
0af3152b64 Merge branch 'main' into sophietheking-7792 2022-09-16 09:38:34 +02:00
Sophie
9bb3157e5e Update content/code-security/dependabot/dependabot-alerts/editing-security-advisories-in-the-github-advisory-database.md 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-09-16 09:27:32 +02:00
Tom Christensen
9079a939ac Update to reflect currently supported docker registries. 2022-09-15 06:50:23 +00:00
Sophie
94e341d20e Update editing-security-advisories-in-the-github-advisory-database.md 2022-09-13 15:36:04 +02:00
Sophie
8b326b6910 Update editing-security-advisories-in-the-github-advisory-database.md 2022-09-13 15:35:23 +02:00
Jules
97b2b33a3e Merge branch 'main' into jules-6575 2022-09-13 11:49:47 +02:00
Jules
a52d4db6e0 Update configuring-dependabot-security-updates.md 2022-09-13 11:48:49 +02:00
Jules
b38ef39324 Update configuring-dependabot-security-updates.md 2022-09-13 11:44:08 +02:00
Sophie
b6ffe4e177 adds screenshot 2022-09-12 11:08:22 +02:00
Sophie
230ef572de adds fbv file and step to procedure 2022-09-12 10:18:44 +02:00