Hackernews posts about Dependabot

Related: GitHub   Ansible  
  1. Hackers are spoofing themselves as GitHub's Dependabot to steal user passwords (checkmarx.com)
    85 points by Beggers1960 about 1 year ago | 41 comments
  2. GitHub repos bombarded by info-stealing commits masked as Dependabot (www.bleepingcomputer.com)
    25 points by rc00 about 1 year ago | 1 comments
  3. Auto-Triage Rules for Dependabot (github.blog)
    5 points by todsacerdoti over 1 year ago | discuss
  4. Dependabot relieves alert fatigue from NPM devDependencies (github.blog)
    4 points by todsacerdoti over 1 year ago | 1 comments
  5. Dependabot-core is now open source with an MIT license (github.blog)
    4 points by LaSombra 7 months ago | discuss
  6. Dependabot Confusion: Tricking Dependabot into Injecting Malicious Code (giraffesecurity.dev)
    4 points by speedboat199 over 1 year ago | discuss
  7. Dependabot Confusion: Gaining Access to Private GitHub Repositories (giraffesecurity.dev)
    4 points by speedboat199 over 1 year ago | discuss
  8. Anvilytics.com – Dependabot and CVE Management Platform (anvilytics.com)
    3 points by haydenx 10 months ago | 1 comments
  9. Show HN: A Go based CLI tool 'depbot' for configuring dependabot on GitHub (github.com)
    3 points by kaypee901 8 months ago | discuss
  10. Dependabot Setup Wizard (github.com)
    3 points by kaypee901 8 months ago | discuss
  11. GitHub Dependabot in Action (betterprogramming.pub)
    2 points by sbricks almost 2 years ago | 1 comments
  12. Using Pnpm and Dependabot? Security
    2 points by jamescrowley 3 months ago | discuss
  13. Show HN: Tag dependabot PRs with 'major-version-bump' label (gist.github.com)
    2 points by calderwoodra 7 months ago | discuss
  14. Dependabot-core is now open source with an MIT license (github.blog)
    2 points by encodedrose 7 months ago | discuss
  15. Dependabot auto-triage rules support CVE IDs and GHSA IDs – The GitHub Blog (github.blog)
    2 points by pelasaco about 1 year ago | discuss
  16. Dependabot user-defined rules for security updates and alerts (github.blog)
    2 points by edmorley about 1 year ago | discuss
  17. Dependabot Confusion: Tricking Dependabot into Injecting Malicious Code (giraffesecurity.dev)
    2 points by speedboat199 over 1 year ago | discuss
  18. Automating Dependabot PR Merges with CI/CD (michaelbastos.com)
    1 points by mbastos almost 2 years ago | 1 comments
  19. Skipping 'Dependabot' commits when using 'Git log' (utcc.utoronto.ca)
    1 points by zdw about 1 month ago | discuss
  20. Show HN: CLI Tool Built with Golang to Easily Generate Dependabot Configurations (github.com)
    1 points by kaypee901 5 months ago | discuss
  21. Show HN: Contribute to CLI based tool for configuring dependabot on GitHub (github.com)
    1 points by kaypee901 7 months ago | discuss
  22. A faster way to manage version updates with Dependabot (github.blog)
    1 points by 8organicbits over 1 year ago | discuss
  23. A faster way to manage version updates with Dependabot (github.blog)
    1 points by todsacerdoti over 1 year ago | discuss
  24. Streamlining Software Dependency Management with Dependabot (blog.mergify.com)
    1 points by jd__ over 1 year ago | discuss
  25. Dependabot on Gitlab (2016) (paperless.blog)
    1 points by nigamanth almost 2 years ago | discuss
  26. Quieter Dependabot (github.blog)
    1 points by twunde almost 2 years ago | discuss
  27. Show HN: GitOps Template for Kubernetes (github.com)
    86 points by pmig 3 months ago | 35 comments
  28. Launch HN: Infield (YC W20) – Safer, faster dependency upgrades
    74 points by stevepike over 1 year ago | 39 comments
  29. Ask HN: Benefits to Keeping Packages Updated?
    6 points by Guid_NewGuid over 1 year ago | 7 comments
  30. Ask HN: What developer productivy tools would you need?
    6 points by playingalong almost 2 years ago | 3 comments