jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-23 11:54:18 -05:00
Code Issues Projects Releases Wiki Activity
53,725 Commits 28 Branches 1 Tag
2ae3d74757b51a6a2fb639d0f8cf9e88ecd44de0
Commit Graph

519 Commits

Author SHA1 Message Date
mc
2c71a3983f Fix the information provided for Dependabot alert notifications (#34452) 2023-02-13 11:53:24 +00:00
Anne-Marie
58e55dd2cc [Improvement]: Clarify syntax for defining a version range to ignore in dependabot.yml #9285 (#34553) 2023-02-10 10:38:31 +00:00
mc
6d491ef9f7 Rework the improve manage encrypted secrets dependabot article (#34096) 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2023-02-07 20:47:22 +00:00
Peter Bengtsson
31d12167e4 remove all hardcode language internal links (#34526) 2023-02-07 20:12:08 +00:00
Sophie
804304c42f [2023-02-07]: Dependabot Alerts default permissions: write and maintain roles - [GA] (#34169) 
Co-authored-by: Anne-Marie  <102995847+am-stead@users.noreply.github.com>
 2023-02-07 18:12:29 +00:00
Kevin Heis
ac2cd0e47d Deprecate GHES 3.3 (#34328) 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
Co-authored-by: Matt Pollard <mattpollard@users.noreply.github.com>
Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
 2023-02-03 17:05:11 +00:00
Rachael Rose Renk
8cf8bc9ff6 Merge branch 'main' into fix_dependabot_example_add_label 2023-02-02 10:25:26 -07:00
Rachael Rose Renk
2a38934ce6 Update content/code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions.md 2023-02-02 10:25:19 -07:00
Rachael Rose Renk
4b3693aa20 Update content/code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions.md 2023-02-02 10:25:12 -07:00
Rotzbua
92db897701 Fix dependabot example auto-label 
* Fix missing `GITHUB_TOKEN` to get permission for adding label
 2023-01-30 00:17:01 +01:00
Rotzbua
6769bce8d4 Fix dependabot examples 
* Fix deprecation warning message
* GH Action should use just main version
 2023-01-30 00:03:51 +01:00
Kevin Heis
74e64648e6 Reformat towards deprecation 3.3 (#34181) 2023-01-26 16:13:09 +00:00
mc
96442f076c Security tab - use correct formatting (bold) (#34174) 2023-01-25 18:46:34 +00:00
Anne-Marie
79ff2bc7f6 Improvements to Dependabot alerts #8291 (#33984) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2023-01-20 12:16:06 +00:00
André Schröder
47617bea3b Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2023-01-17 23:31:00 +01:00
André Schröder
4b1ab1e649 such as -> that is 2023-01-17 23:27:03 +01:00
André Schröder
a94bd3f84d Merge branch 'main' into feat/document-dependabot-prefix 2023-01-17 23:24:33 +01:00
Sean Killeen
498107c24e Fix "low hanging fruit" spelling errors (#23216) 2023-01-17 19:30:29 +00:00
mc
c664161729 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 2023-01-16 14:23:54 +00:00
mc
61446f056e [Ready for merging - 2023-01-12] - Pausing / unpausing Dependabot updates and related notifications (#33379) 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
Co-authored-by: Erin Havens <erinhav@github.com>
Co-authored-by: Anne-Marie <102995847+am-stead@users.noreply.github.com>
 2023-01-12 17:40:37 +00:00
David McIntosh
c87259c404 Dependabot supports gomod indirect dependency filtering (#33884) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2023-01-12 10:27:15 +00:00
André Schröder
f8cd135f20 make it more clear that a scope follows after "Composer" 2023-01-10 23:35:26 +01:00
André Schröder
64cbb8711d fix concern: add suggested sentence 2023-01-10 23:35:22 +01:00
Joe Clark
471701851f Add documentation for GitHub Actions configuration variables (#33119) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: Tauhid Anjum <tauhidanjum@gmail.com>
Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2023-01-10 05:17:34 +00:00
mc
2b9b5cf174 Merge branch 'main' into feat/document-dependabot-prefix 2023-01-09 14:33:14 +00:00
mc
dc541ae874 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 2023-01-09 14:17:48 +00:00
Anne-Marie
ce4065413a [Improvement]: make pricing model clearer for Dependabot #6770 (#33305) 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2023-01-03 06:30:02 +00:00
André Schröder
e1cef5e7d5 Document behavior of prefix in dependabot.yml 
It would have been helpful to me if the documentation was more
straight-forward about that a `:` is appended to the commit title by
default and how to disable that the `:` is appended.

For reference, here is the implementation:
06702c83e5/common/lib/dependabot/pull_request_creator/pr_name_prefixer.rb (L75-L83)
 2022-12-28 13:53:41 +01:00
Lucas Costi
30adcf1210 Add raw tags to Dependabot Actions code (#33534) 2022-12-14 02:01:43 +00:00
mc
502af8f776 Dependabot does not access public registries when the user has configured private registries - fix broken link (#33515) 2022-12-13 19:55:02 +00:00
Sophie
48524a0a7d [2022-12-13]: Dependabot does not access public registries when the user has configured private registries - [GA] (#33310) 
Co-authored-by: Jake Coffman <jakecoffman@github.com>
Co-authored-by: Anne-Marie  <102995847+am-stead@users.noreply.github.com>
Co-authored-by: Nish Sinha <nishnha@github.com>
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Ankit Honey <honeyankit@github.com>
 2022-12-13 19:22:06 +00:00
Anne-Marie
6c3854a5f7 [2022-11-29]: Dependabot Alerts: Audit Log Improvements - [GA] #8657 (#32989) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: Vanessa <vgrl@github.com>
 2022-11-29 21:31:28 +00:00
mc
06667bb26e Describe how Dependabot chooses to rebase pull requests (#32993) 2022-11-29 17:19:08 +00:00
Jules
4e0d5f63b1 Adds dependabot actions support (#32815) 2022-11-23 20:20:39 +00:00
Anne-Marie
f7d1ef5023 [2022-11-23]: Dependabot support for private Hex repositories - [GA] #8667 (#32661) 
Co-authored-by: Landon Grindheim <landon.grindheim@gmail.com>
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2022-11-23 20:08:16 +00:00
Zach Willard
34bc43e26b Update configuring-dependabot-security-updates.md 
This makes the documentation consistent with the example and the other page here: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#open-pull-requests-limit

It could catch someone off-guard if they use the config option in the paragraph instead of the example.
 2022-11-21 09:41:31 -06:00
Mattt
600d45f482 Update to new limit for Dependabot commit message prefix (#32363) 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2022-11-18 17:12:47 +00:00
Markus Schulte
3203ecbc31 Warn to wait for checks if using Dependabot auto-merge (#21607) 2022-11-15 12:29:49 +00:00
Jules
fff651b887 Dependabot version updates for forks (#32271) 
Co-authored-by: github-actions <github-actions@github.com>
 2022-11-07 17:50:37 +00:00
Sophie
afa177191a [2022-10-07]: Dependabot alerts to deprecate repository banners (i.e. "UI" notifications)- [GA] (#32274) 
Co-authored-by: github-actions <github-actions@github.com>
 2022-11-04 23:00:02 +00:00
Sophie
b07d1c370c [Improvement]: Refactor the articles about security advisories (#31807) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: github-actions <github-actions@github.com>
 2022-10-27 14:40:52 +00:00
Courtney Wilson
9ab6911944 Merge branch 'main' into use-consistant-wording-for-github-dot-com 2022-10-26 08:38:01 -05:00
Rachael Sewell
3e998f61d5 use azure blob storage for archived enterprise versions (#31883) 
Co-authored-by: Laura Coursen <lecoursen@github.com>
Co-authored-by: mchammer01 <42146119+mchammer01@users.noreply.github.com>
 2022-10-25 12:03:38 -07:00
mc
edcf908930 Update content/code-security/dependabot/dependabot-alerts/editing-security-advisories-in-the-github-advisory-database.md 2022-10-25 11:23:55 +01:00
mc
091519ec5d Merge branch 'main' into use-consistant-wording-for-github-dot-com 2022-10-25 08:45:35 +01:00
Anne-Marie
c0859e564a [2022-10-24]: Dependabot Updates supporting the increase-if-necessary versioning strategy for Python - [GA] #8372 (#31944) 2022-10-24 18:33:39 +00:00
indigolain
273c130d39 Use consistant wording for GitHub.com 2022-10-23 15:19:19 +09:00
Anne-Marie
0e03452f9c [2022-10-20]: Dependabot updates for Yarn v3 - [GA] (#31471) 
Co-authored-by: Jurre <jurre@github.com>
 2022-10-20 16:24:05 +00:00
Joe Clark
74a679dc51 Make product variables for Enterprise translation-friendly (#31628) 
Co-authored-by: Laura Coursen <lecoursen@github.com>
Co-authored-by: Evan Bonsignori <ebonsignori@github.com>
 2022-10-17 18:54:05 +00:00
mc
7542f27c8f Add "Best practice" article for writing security advisories (#31414) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-10-14 08:25:36 +00:00