This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
What are direct dependencies?
Dependencies that are explicitly defined in the manifest or lock file.
Dependencies used by packages that are dependencies of your project.
Dependencies that aren't referenced in the manifest file.
When is a Dependabot alert generated?
When a new advisory is added to the GitHub Advisory Database or the dependency graph for a repository changes.
Whenever a pull request attempts to merge changes into the main branch that contain no dependency changes.
Whenever a new vulnerability is removed from the GitHub Advisory Database.
What is a prerequisite for Dependabot to automatically enable security updates for a repository?
Repository is public.
Repository is a fork.
Repository is archived.
What query can you use to view all the notifications marked as done?
is:done
is:saved
is:complete
You must answer all questions before checking your work.
Was this page helpful?