jprdonnelly/docs
1
0
Fork 0
mirror of synced 2025-12-26 14:02:45 -05:00
Code Issues Projects Releases Wiki Activity
32,829 Commits 28 Branches 1 Tag
ec562cd8649147d489bfe00a20471474a405cb8a
Commit Graph

169 Commits

Author SHA1 Message Date
mc
1db87819ee GitHub Advisory Database - add pub to list of supported ecosystems (#31560) 2022-10-10 14:38:12 +00:00
mc
90bac38ab1 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 2022-10-10 08:53:30 +01:00
Jeff Widman
97e82c0ca8 Cleanup docker registry docs 
Dependabot now supports:
1. Public AWS ECR: https://github.com/dependabot/dependabot-core/issues/4212
2. Microsoft Azure Container Registry: https://github.com/dependabot/dependabot-core/issues/3689
3. Any registry that uses HTTP Basic Auth instead of the OCI-spec-compliant central token service: https://github.com/dependabot/dependabot-core/issues/3689#issuecomment-1272037775

So now that we support all the major docker/container registry providers, there's no need to individually list them... this way we don't have folks wondering "my registry wasn't explicitly listed, is it supported?"

So switch to mention the two authentication schemes that we support and leave it at that.

Note: I left the `ecr-docker` example, as that is a one-off workaround we added to our internal code a long time ago because ECR isn't OCI compliant. So still needs the custom key to indicate the workaround should be used. Long term I hope ECR migrates to a more standard auth flow and we can eliminate that custom workaround, but they're not there yet.
 2022-10-07 14:02:45 -07:00
Victor Lin
d740a8257e Fix incorrect comment on GitHub Actions example 2022-10-06 13:28:39 -07:00
Hervé
dc2f715bc1 Fix wording 2022-10-05 09:44:41 +02:00
Christopher Kintner
82ed39fa01 note that dependabot.yml cannot be used to configure dependabot alerts (#31397) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2022-10-04 16:14:31 +00:00
Anne-Marie
37e362868b Edits to Notification Settings page following redesign (#30999) 
Co-authored-by: github-actions <github-actions@github.com>
Co-authored-by: Sophie <29382425+sophietheking@users.noreply.github.com>
 2022-10-04 12:01:17 +00:00
mc
253e2a4666 Merge branch 'main' into mchammer01/dependabot-yml-weekly 2022-09-30 15:28:43 +01:00
mc
c4f1f8659f Update content/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot.md 
Co-authored-by: Sophie <29382425+sophietheking@users.noreply.github.com>
 2022-09-30 15:25:02 +01:00
PSJ
8783f5960a Update steps to create repo secrets (#18175) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Lucas Costi <lucascosti@users.noreply.github.com>
 2022-09-30 03:51:47 +00:00
mc
27911004ec Update keeping-your-actions-up-to-date-with-dependabot.md 2022-09-29 08:55:43 +01:00
mc
4cd7011c06 Update customizing-dependency-updates.md 2022-09-29 08:54:34 +01:00
mc
af0c7eea08 Update configuring-dependabot-version-updates.md 2022-09-29 08:48:52 +01:00
Isaac Brown
5bb464a343 Describe Actions usage for Dependabot (#30966) 
Co-authored-by: Matt Pollard <mattpollard@users.noreply.github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-09-28 15:12:26 +01:00
mc
6f20df6e58 Merge branch 'main' into patch-5 2022-09-26 12:21:32 +01:00
Jules
8de1b90f16 Limited support for a removed dependency - [GA] (#31035) 
Co-authored-by: Brad Isbell <bradify@github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-09-23 17:19:31 +00:00
mc
8e2fe3a971 Merge branch 'main' into update-docker-registry-note 2022-09-23 08:41:16 +01:00
mc
88dcb0b13e Apply suggestions from code review 2022-09-23 08:31:24 +01:00
mc
f027de12c2 Apply suggestions from code review 2022-09-23 08:14:26 +01:00
Tom Christensen
6f1a6f6fa7 Merge branch 'update-docker-registry-note' of https://github.com/pavera/docs into update-docker-registry-note 2022-09-22 19:32:58 +00:00
Tom Christensen
47839c164f Updating based on PR feedback 2022-09-22 19:29:40 +00:00
Sarah Schneider
b7f48ea2c1 Support GHAE internal-only semantic versioning (#29178) 
Co-authored-by: Peter Bengtsson <mail@peterbe.com>
Co-authored-by: Matt Pollard <mattpollard@users.noreply.github.com>
 2022-09-22 08:26:58 +02:00
Jeff Widman
f0428d6f69 Switch schedule.interval in examples to weekly 
Almost all the examples previously had `daily`.

However, we've heard from users that this often creates a little too much noise, so we changed the default on the back end to weekly.

Since people often copy/paste examples from help docs, this updates the examples to use `"weekly"` as well.

The only examples I didn't change were for `schedule.interval`, for obvious reasons.
 2022-09-20 13:27:43 -07:00
Josh Johanning
068a4edcfb Fixing Azure DevOps NuGet Dependabot config examples (#20617) 2022-09-20 09:14:59 +00:00
LingMan
d99733d486 Explicitly call out that Dependabot only updates direct dependencies by default (#20684) 
Co-authored-by: Jules <19994093+jules-p@users.noreply.github.com>
 2022-09-20 09:02:43 +00:00
Tom Christensen
64b32250e7 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 
Co-authored-by: Jeff Widman <jeff@jeffwidman.com>
 2022-09-19 11:14:56 -06:00
Tom Christensen
ae744b46f5 Update content/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file.md 
Co-authored-by: Jeff Widman <jeff@jeffwidman.com>
 2022-09-19 11:13:59 -06:00
Tom Christensen
535ccaf29e Updating the intro to attempt to adhere to style guide 2022-09-16 09:20:01 +00:00
Tom Christensen
a4a66bb285 Adding GCR 2022-09-16 09:07:42 +00:00
Sophie
0af3152b64 Merge branch 'main' into sophietheking-7792 2022-09-16 09:38:34 +02:00
Sophie
9bb3157e5e Update content/code-security/dependabot/dependabot-alerts/editing-security-advisories-in-the-github-advisory-database.md 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-09-16 09:27:32 +02:00
Tom Christensen
9079a939ac Update to reflect currently supported docker registries. 2022-09-15 06:50:23 +00:00
Sophie
94e341d20e Update editing-security-advisories-in-the-github-advisory-database.md 2022-09-13 15:36:04 +02:00
Sophie
8b326b6910 Update editing-security-advisories-in-the-github-advisory-database.md 2022-09-13 15:35:23 +02:00
Jules
97b2b33a3e Merge branch 'main' into jules-6575 2022-09-13 11:49:47 +02:00
Jules
a52d4db6e0 Update configuring-dependabot-security-updates.md 2022-09-13 11:48:49 +02:00
Jules
b38ef39324 Update configuring-dependabot-security-updates.md 2022-09-13 11:44:08 +02:00
Sophie
b6ffe4e177 adds screenshot 2022-09-12 11:08:22 +02:00
Sophie
230ef572de adds fbv file and step to procedure 2022-09-12 10:18:44 +02:00
Sophie
0e6fc462ce [2022-09-07]: Dependabot unlocks parent dependencies on updates - [GA] (#28853) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
Co-authored-by: Felicity Chapman <felicitymay@github.com>
Co-authored-by: Brad Isbell <bradify@github.com>
 2022-09-08 09:16:32 +10:00
Jon
886357006a Update maven cental link (#29221) 2022-09-05 10:43:38 +01:00
Jules Parker
761b0a16a3 updates from cd plan 2022-09-01 16:56:16 +02:00
Jules Parker
1c9a61ca1f fix typo 2022-08-29 16:48:43 +02:00
Jules Parker
5d68a14c2f updates supported repos section 2022-08-29 15:58:56 +02:00
Jeff Widman
bf439a5f86 Tweak wording based on customer feedback 
Incorporate the feedback from https://github.com/dependabot/dependabot-core/issues/3341 to clarify the wording.
 2022-08-23 11:50:48 -07:00
mc
aab19aebb0 [2022-08-22 - ready to ship]: Dependabot alerts: optional comment with dismissal - [GA] (#29524) 2022-08-22 17:24:35 +00:00
mc
3c6fd404c3 Add a table listing the filters, sort options and labels available for Dependabot alerts (#29466) 
* made a start

* more work

* Apply suggestions from code review

Co-authored-by: Felicity Chapman <felicitymay@github.com>

* address last comments

* adjust versioning

* ooops

* hmmm

Co-authored-by: Felicity Chapman <felicitymay@github.com>
 2022-08-22 09:32:36 +01:00
Junior Eluhu
b8f02ff172 adding release notes (#29927) 2022-08-16 19:03:29 +00:00
Orhan Toy
4d24a40d08 Fix typo: updatng -> updating (#29726) 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
 2022-08-09 09:40:43 +00:00
Kate Catlin
1db3ba5838 Adding GitHub Actions as a supported ecosystem (#29454) 2022-08-04 15:54:31 +00:00