Skip to content
/ create-issue-for-dependabot-vuln Public

GitHub Actions workflow to create new issues when Dependabot finds a vulnerability

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tblanarik/create-issue-for-dependabot-vuln

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
.github/workflows
.github/workflows
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Create Issues for Dependabot Vulnerabilities

Sometimes it's helpful to create issues in your repository that have a 1:1 relationship with dependency vulnerabilities found by Dependabot.

Typically you wouldn't want to do this in a public repository so that bad actors can't exploit it, but for private/internal repositories it's likely OK.

Note that it expects a label called dependabot-vuln

Dependabot alerts CleanShot 2024-06-18 at 16 38 14

Issues created by this workflow CleanShot 2024-06-18 at 16 38 50

PAT Permissions

CleanShot 2024-06-18 at 16 35 46

About

GitHub Actions workflow to create new issues when Dependabot finds a vulnerability

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published