15dc2af377
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
3.2 KiB
title, intro, permissions, shortTitle, versions, type, topics
| title | intro | permissions | shortTitle | versions | type | topics | |||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Enabling delegated alert dismissal for Dependabot | Increase your governance over your {% data variables.product.prodname_dependabot_alerts %} with delegated alert dismissal. | {% data reusables.permissions.delegated-alert-dismissal %} | Enable delegated alert dismissal |
|
how_to |
|
About enabling delegated alert dismissal
{% data reusables.security.delegated-alert-dismissal-intro %}
Configuring delegated dismissal for a repository
[!NOTE] If an organization owner configures delegated alert dismissal via an enforced security configuration, the settings can't be changed at the repository level.
{% data reusables.repositories.navigate-to-repo %} {% data reusables.repositories.sidebar-settings %} {% data reusables.repositories.navigate-to-code-security-and-analysis %}{% ifversion ghas-products %}{% else %} {% data reusables.repositories.navigate-to-ghas-settings %}{% endif %}
- In the "{% data variables.product.prodname_dependabot %}" section, next to "Prevent direct alert dismissals", click Enable.
Configuring delegated dismissal for an organization
You must configure delegated dismissal for your organization using a custom security configuration. You can then apply the security configuration to all (or selected) repositories in your organization.
- Start creating or editing a custom security configuration. See AUTOTITLE.
- In the "Dependency scanning" section of your security configuration, set "Prevent direct alert dismissals" to Enabled.
- Click Save configuration.
- Apply the security configuration to repositories in your organization. See AUTOTITLE.
Configuring delegated dismissal for an enterprise
You must configure delegated dismissal for your enterprise using a custom security configuration. You can then apply the security configuration to all (or selected) repositories in your enterprise.
- Start creating or editing a custom security configuration. See AUTOTITLE.
- In the "Dependency scanning" section of your security configuration, set "Prevent direct alert dismissals" to Enabled.
- Click Save configuration.
- Apply the security configuration to repositories in your enterprise. See AUTOTITLE.
Next steps
Now that you have enabled delegated alert dismissal for {% data variables.product.prodname_dependabot %}, you should regularly review alert dismissal requests to maintain an accurate alert count and unblock your developers. See AUTOTITLE.