Sicherheitslücken in der GitHub Advisory Database durchsuchen→
Die GitHub Advisory Database erlaubt Dir, nach Schwachstellen zu suchen, die Open-Source-Projekte auf GitHub betreffen.
About alerts for vulnerable dependencies→
GitHub sends GitHub Dependabot alerts when we detect vulnerabilities affecting your repository.
Configuring GitHub Dependabot security updates→
You can use GitHub Dependabot security updates or manual pull requests to easily update vulnerable dependencies.
Angreifbare Abhängigkeiten in Deinem Repository anzeigen und aktualisieren→
If GitHub discovers vulnerable dependencies in your project, you can view them on the Dependabot alerts tab of your repository. Then, you can update your project to resolve or dismiss the vulnerability.
Troubleshooting the detection of vulnerable dependencies→
If the dependency information reported by GitHub is not what you expected, there are a number of points to consider, and various things you can check.