Hackernews posts about Dependabot

Related: GitHub   Ansible  
  1. Weaponizing Dependabot: Pwn Request at its finest (boostsecurity.io)
    104 points by chha 2 days ago | 52 comments
  2. Weaponizing Dependabot: Pwn Request at its finest (boostsecurity.io)
    4 points by gepeto42 6 days ago | 1 comments
  3. Hackers are spoofing themselves as GitHub's Dependabot to steal user passwords (checkmarx.com)
    85 points by Beggers1960 over 1 year ago | 41 comments
  4. GitHub repos bombarded by info-stealing commits masked as Dependabot (www.bleepingcomputer.com)
    25 points by rc00 over 1 year ago | 1 comments
  5. Auto-Triage Rules for Dependabot (github.blog)
    5 points by todsacerdoti over 1 year ago | discuss
  6. Dependabot-core is now open source with an MIT license (github.blog)
    4 points by LaSombra about 1 year ago | discuss
  7. Anvilytics.com – Dependabot and CVE Management Platform (anvilytics.com)
    3 points by haydenx over 1 year ago | 1 comments
  8. Show HN: A Go based CLI tool 'depbot' for configuring dependabot on GitHub (github.com)
    3 points by kaypee901 about 1 year ago | discuss
  9. Dependabot Setup Wizard (github.com)
    3 points by kaypee901 about 1 year ago | discuss
  10. Using Pnpm and Dependabot? Security
    2 points by jamescrowley 9 months ago | discuss
  11. Show HN: Tag dependabot PRs with 'major-version-bump' label (gist.github.com)
    2 points by calderwoodra about 1 year ago | discuss
  12. Dependabot-core is now open source with an MIT license (github.blog)
    2 points by encodedrose about 1 year ago | discuss
  13. Dependabot auto-triage rules support CVE IDs and GHSA IDs – The GitHub Blog (github.blog)
    2 points by pelasaco over 1 year ago | discuss
  14. Dependabot user-defined rules for security updates and alerts (github.blog)
    2 points by edmorley over 1 year ago | discuss
  15. How Dependabot Applies Advisory Databases to Python (www.youtube.com)
    1 points by kaycebasques 2 months ago | discuss
  16. Do we have a "GenAI dependabot"?
    1 points by guilhermecgs 2 months ago | discuss
  17. Dependabot Now Supports Bun (github.blog)
    1 points by Destiner 4 months ago | discuss
  18. Dependabot now supports pnpm catalogs (github.blog)
    1 points by sgammon 4 months ago | discuss
  19. Skipping 'Dependabot' commits when using 'Git log' (utcc.utoronto.ca)
    1 points by zdw 7 months ago | discuss
  20. Show HN: CLI Tool Built with Golang to Easily Generate Dependabot Configurations (github.com)
    1 points by kaypee901 10 months ago | discuss
  21. Show HN: Contribute to CLI based tool for configuring dependabot on GitHub (github.com)
    1 points by kaypee901 about 1 year ago | discuss
  22. A faster way to manage version updates with Dependabot (github.blog)
    1 points by 8organicbits almost 2 years ago | discuss
  23. A faster way to manage version updates with Dependabot (github.blog)
    1 points by todsacerdoti almost 2 years ago | discuss
  24. Show HN: GitOps Template for Kubernetes (github.com)
    86 points by pmig 9 months ago | 35 comments
  25. Ask HN: Benefits to Keeping Packages Updated?
    6 points by Guid_NewGuid almost 2 years ago | 7 comments
  26. Ask HN: Why is open source vulnerability management still an unsolved problem?
    5 points by kjok almost 2 years ago | 1 comments
  27. Ask HN: Is there a GitHub observability tool/platform?
    3 points by michidk over 1 year ago | 5 comments
  28. Ask HN: Why is open source vulnerability management still an unsolved problem?
    3 points by kjok almost 2 years ago | 1 comments
  29. GitHub as Storage and Actions as Compute?
    2 points by bigEnotation 12 months ago | 2 comments
  30. Am I doing the right choice?
    2 points by kidfrom over 1 year ago | 2 comments
  31. Show HN: Parent Docker Image Transparency And Daily Pull Request Compliance (github.com)
    1 points by kcrane3576 7 months ago | discuss
  32. Ask HN: Is there a GitHub observability tool/platform?
    1 points by michidk over 1 year ago | discuss