jprdonnelly/docs
1
0
Fork 0
mirror of synced 2026-01-07 09:01:31 -05:00
Code Issues Projects Releases Wiki Activity
Files
e5ea238082be34bcffd8d836d4e48364f3100b13
docs/data/reusables/notifications/vulnerable-dependency-notification-options.md
Gagan Bhullar 26fa95a74c capitalize first letter in each line (#33836) 
Co-authored-by: Alex Nguyen <150945400+nguyenalex836@users.noreply.github.com>
2024-07-08 15:51:34 +00:00

2.4 KiB
Raw Blame History

{% ifversion fpt or ghec %}By default, you will receive notifications:{% endif %}{% ifversion ghes %}By default, if your enterprise owner has configured email for notifications on your instance, you will receive {% data variables.product.prodname_dependabot_alerts %}:{% endif %}

  • In your inbox, as web notifications. A web notification is sent when {% data variables.product.prodname_dependabot %} is enabled for a repository, when a new manifest file is committed to the repository, and when a new vulnerability with a critical or high severity is found (On {% data variables.product.prodname_dotcom %} option).
  • By email. An email is sent when {% data variables.product.prodname_dependabot %} is enabled for a repository, when a new manifest file is committed to the repository, and when a new vulnerability with a critical or high severity is found (Email option).
  • On the command line. Warnings are displayed as callbacks when you push to repositories with any insecure dependencies (CLI option).
  • On {% data variables.product.prodname_mobile %}, as web notifications. For more information, see "AUTOTITLE."

{% note %}

Note: The email and web/{% data variables.product.prodname_mobile %} notifications are:

  • Per repository when {% data variables.product.prodname_dependabot %} is enabled on the repository, or when a new manifest file is committed to the repository.

  • Per organization when a new vulnerability is discovered.

  • Sent when a new vulnerability is discovered. {% data variables.product.prodname_dotcom %} doesn't send notifications when vulnerabilities are updated.

{% endnote %}

{% ifversion update-notification-settings-22 %} You can customize the way you are notified about {% data variables.product.prodname_dependabot_alerts %}. For example, you can receive a daily or weekly digest email summarizing alerts for up to 10 of your repositories using the Email weekly digest option. {% else %} You can customize the way you are notified about {% data variables.product.prodname_dependabot_alerts %}. For example, you can receive a weekly digest email summarizing alerts for up to 10 of your repositories using the Email a digest summary of vulnerabilities and Weekly security email digest options.{% endif %}

Reference in New Issue View Git Blame Copy Permalink