GitHub Community
Run dependabot alerts on PRs too #21322
Answered
by
rsclarke
hfhbd
asked this question in
Code Security
-
|
I don't want to get an alert after merging a vulnerable dependency to the main branch but before right in the PR. |
Beta Was this translation helpful? Give feedback.
Answered by
rsclarke
Jul 26, 2022
Replies: 1 comment 1 reply
-
|
@hfhbd this is possible with the Dependency review action. |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
Thanks, didn't know, I expected a built-in solution. But this action sounds nice, I will try it. |
Beta Was this translation helpful? Give feedback.
Answer selected by
hfhbd
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
@hfhbd this is possible with the Dependency review action.