Hackernews posts about Dependabot

1. Dependabot Now Supports Bun (github.blog)
   1 points by Destiner 8 days ago | discuss
2. Dependabot now supports pnpm catalogs (github.blog)
   1 points by sgammon 17 days ago | discuss
3. Hackers are spoofing themselves as GitHub's Dependabot to steal user passwords (checkmarx.com)
   85 points by Beggers1960 over 1 year ago | 41 comments
4. GitHub repos bombarded by info-stealing commits masked as Dependabot (www.bleepingcomputer.com)
   25 points by rc00 over 1 year ago | 1 comments
5. Auto-Triage Rules for Dependabot (github.blog)
   5 points by todsacerdoti over 1 year ago | discuss
6. Dependabot relieves alert fatigue from NPM devDependencies (github.blog)
   4 points by todsacerdoti almost 2 years ago | 1 comments
7. Dependabot-core is now open source with an MIT license (github.blog)
   4 points by LaSombra 9 months ago | discuss
8. Dependabot Confusion: Tricking Dependabot into Injecting Malicious Code (giraffesecurity.dev)
   4 points by speedboat199 almost 2 years ago | discuss
9. Dependabot Confusion: Gaining Access to Private GitHub Repositories (giraffesecurity.dev)
   4 points by speedboat199 almost 2 years ago | discuss
10. Anvilytics.com – Dependabot and CVE Management Platform (anvilytics.com)
    3 points by haydenx 12 months ago | 1 comments
11. Show HN: A Go based CLI tool 'depbot' for configuring dependabot on GitHub (github.com)
    3 points by kaypee901 10 months ago | discuss
12. Dependabot Setup Wizard (github.com)
    3 points by kaypee901 10 months ago | discuss
13. Using Pnpm and Dependabot? Security
    2 points by jamescrowley 6 months ago | discuss
14. Show HN: Tag dependabot PRs with 'major-version-bump' label (gist.github.com)
    2 points by calderwoodra 9 months ago | discuss
15. Dependabot-core is now open source with an MIT license (github.blog)
    2 points by encodedrose 9 months ago | discuss
16. Dependabot auto-triage rules support CVE IDs and GHSA IDs – The GitHub Blog (github.blog)
    2 points by pelasaco over 1 year ago | discuss
17. Dependabot user-defined rules for security updates and alerts (github.blog)
    2 points by edmorley over 1 year ago | discuss
18. Dependabot Confusion: Tricking Dependabot into Injecting Malicious Code (giraffesecurity.dev)
    2 points by speedboat199 almost 2 years ago | discuss
19. Automating Dependabot PR Merges with CI/CD (michaelbastos.com)
    1 points by mbastos almost 2 years ago | 1 comments
20. Skipping 'Dependabot' commits when using 'Git log' (utcc.utoronto.ca)
    1 points by zdw 3 months ago | discuss
21. Show HN: CLI Tool Built with Golang to Easily Generate Dependabot Configurations (github.com)
    1 points by kaypee901 7 months ago | discuss
22. Show HN: Contribute to CLI based tool for configuring dependabot on GitHub (github.com)
    1 points by kaypee901 9 months ago | discuss
23. A faster way to manage version updates with Dependabot (github.blog)
    1 points by 8organicbits over 1 year ago | discuss
24. A faster way to manage version updates with Dependabot (github.blog)
    1 points by todsacerdoti over 1 year ago | discuss
25. Streamlining Software Dependency Management with Dependabot (blog.mergify.com)
    1 points by jd__ almost 2 years ago | discuss
26. Show HN: GitOps Template for Kubernetes (github.com)
    86 points by pmig 5 months ago | 35 comments
27. Launch HN: Infield (YC W20) – Safer, faster dependency upgrades
    74 points by stevepike over 1 year ago | 39 comments
28. Ask HN: Benefits to Keeping Packages Updated?
    6 points by Guid_NewGuid over 1 year ago | 7 comments
29. Ask HN: Why is open source vulnerability management still an unsolved problem?
    5 points by kjok over 1 year ago | 1 comments
30. Ask HN: Is there a GitHub observability tool/platform?
    3 points by michidk 12 months ago | 5 comments
31. Ask HN: Why is open source vulnerability management still an unsolved problem?
    3 points by kjok over 1 year ago | 1 comments
32. GitHub as Storage and Actions as Compute?
    2 points by bigEnotation 8 months ago | 2 comments