Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / github/docs issues and pull requests

Labelled with: code security

#40520 - fix link fragments to dependabot options reference

Pull Request - State: closed - Opened by djbrown 6 months ago - 2 comments
Labels: content, dependabot, code security

#37704 - Add Mix to Dependency Submission premade action table

Pull Request - State: closed - Opened by maennchen 11 months ago - 7 comments
Labels: content, code security

#37704 - Add Mix to Dependency Submission premade action table

Pull Request - State: closed - Opened by maennchen 11 months ago - 6 comments
Labels: content, code security

#37541 - Non-existent UI element referenced in Dependency Graph settings page

Issue - State: closed - Opened by BaylorRice 11 months ago - 4 comments
Labels: content, code security

#35901 - docs: dependabot: show how to express Maven version ranges

Pull Request - State: closed - Opened by raboof about 1 year ago - 5 comments
Labels: content, code security, SME reviewed

#35901 - docs: dependabot: show how to express Maven version ranges

Pull Request - State: closed - Opened by raboof about 1 year ago - 7 comments
Labels: content, code security, SME reviewed

#35863 - Fix supported values for Dependabot update types

Pull Request - State: closed - Opened by pomier about 1 year ago - 6 comments
Labels: content, waiting for review, code security

#35863 - Fix supported values for Dependabot update types

Pull Request - State: closed - Opened by pomier about 1 year ago - 4 comments
Labels: content, waiting for review, code security

#35862 - Wrong supported values for Dependabot update types

Issue - State: closed - Opened by pomier about 1 year ago - 2 comments
Labels: content, code security

#35818 - dependabot options: fix values for ignore update-types

Pull Request - State: closed - Opened by raboof about 1 year ago - 7 comments
Labels: content, waiting for review, code security, needs SME

#35818 - dependabot options: fix values for ignore update-types

Pull Request - State: closed - Opened by raboof about 1 year ago - 6 comments
Labels: content, waiting for review, code security, needs SME

#35730 - Fix case of `ruleId`

Pull Request - State: closed - Opened by jsoref over 1 year ago - 3 comments
Labels: content, code security

#35730 - Fix case of `ruleId`

Pull Request - State: closed - Opened by jsoref over 1 year ago - 4 comments
Labels: content, code security

#35709 - `ruleId` is written as `ruleID` in a couple of places

Issue - State: closed - Opened by jsoref over 1 year ago - 2 comments
Labels: help wanted, content, code security

#35428 - Fix NuGet typo

Pull Request - State: closed - Opened by akordowski over 1 year ago - 3 comments
Labels: content, code security

#35428 - Fix NuGet typo

Pull Request - State: closed - Opened by akordowski over 1 year ago - 2 comments
Labels: content, code security

#35427 - Fix alert header - part 2

Pull Request - State: closed - Opened by akordowski over 1 year ago - 3 comments
Labels: content, code security

#35427 - Fix alert header - part 2

Pull Request - State: closed - Opened by akordowski over 1 year ago - 2 comments
Labels: content, code security

#35425 - Fix alert header

Pull Request - State: closed - Opened by akordowski over 1 year ago - 3 comments
Labels: content, code security

#35425 - Fix alert header

Pull Request - State: closed - Opened by akordowski over 1 year ago - 2 comments
Labels: content, code security

#35416 - Add note alert header

Pull Request - State: closed - Opened by akordowski over 1 year ago - 2 comments
Labels: content, code security

#35415 - Missing alert header

Issue - State: closed - Opened by akordowski over 1 year ago
Labels: content, code security

#35371 - Fix link to supported packages in 'Code Security > Explore dependencies'

Pull Request - State: closed - Opened by julien-deramond over 1 year ago - 4 comments
Labels: content, code security

#35371 - Fix link to supported packages in 'Code Security > Explore dependencies'

Pull Request - State: closed - Opened by julien-deramond over 1 year ago - 3 comments
Labels: content, code security

#35368 - Fix note alert rendering

Pull Request - State: closed - Opened by akordowski over 1 year ago - 4 comments
Labels: content, code security

#35358 - Fix tip alert

Pull Request - State: closed - Opened by akordowski over 1 year ago - 3 comments
Labels: content, code security

#35358 - Fix tip alert

Pull Request - State: closed - Opened by akordowski over 1 year ago - 2 comments
Labels: content, code security

#35327 - Fix `Code security` feature descriptions

Pull Request - State: open - Opened by akordowski over 1 year ago - 3 comments
Labels: content, code security

#35327 - Fix `Code security` feature descriptions

Pull Request - State: closed - Opened by akordowski over 1 year ago - 6 comments
Labels: content, code security

#35325 - Wrong description of the `Settings / Security / Code security` feature

Issue - State: closed - Opened by akordowski over 1 year ago - 5 comments
Labels: content, code security

#35235 - Clarify "removing secrets from previous commits" section

Pull Request - State: closed - Opened by lacymorrow over 1 year ago - 7 comments
Labels: content, waiting for review, code security

#35043 - Missing originalUriBaseIds property from the SARIF specification

Pull Request - State: closed - Opened by marcandre-larochelle-bell over 1 year ago - 19 comments
Labels: content, triage, more-information-needed, code security, SME reviewed

#35043 - Missing originalUriBaseIds property from the SARIF specification

Pull Request - State: closed - Opened by marcandre-larochelle-bell over 1 year ago - 21 comments
Labels: content, code security, SME reviewed

#34996 - Fix typo in guidance-for-the-configuration-of-private-registries-for-…

Pull Request - State: closed - Opened by DamienCassou over 1 year ago - 5 comments
Labels: content, code security

#34996 - Fix typo in guidance-for-the-configuration-of-private-registries-for-…

Pull Request - State: closed - Opened by DamienCassou over 1 year ago - 4 comments
Labels: content, code security

#34820 - sarif-support-for-code-scanning.md:`runAutomationDetails` fix

Pull Request - State: closed - Opened by SwuduSusuwu over 1 year ago - 7 comments
Labels: content, code security

#34820 - sarif-support-for-code-scanning.md:`runAutomationDetails` fix

Pull Request - State: closed - Opened by SwuduSusuwu over 1 year ago - 8 comments
Labels: content, code security

#34819 - sarif-support-for-code-scanning.md:runAutomationDetails fix calendar use

Issue - State: closed - Opened by SwuduSusuwu over 1 year ago - 4 comments
Labels: content, code security

#34816 - Configuring Cloudsmith as a private registry

Pull Request - State: closed - Opened by ciaracarey over 1 year ago - 6 comments
Labels: content, code security, needs SME

#34597 - update typo in the sentence

Pull Request - State: closed - Opened by s-3ntinel over 1 year ago - 3 comments
Labels: content, code security

#34597 - update typo in the sentence

Pull Request - State: closed - Opened by s-3ntinel over 1 year ago - 4 comments
Labels: content, code security

#34471 - Update link to "vulnerability" in CVE program glossary

Pull Request - State: closed - Opened by EliahKagan over 1 year ago - 4 comments
Labels: content, code security

#34471 - Update link to "vulnerability" in CVE program glossary

Pull Request - State: closed - Opened by EliahKagan over 1 year ago - 3 comments
Labels: content, code security

#34470 - Link to CVE program "Vulnerability" definition has broken fragment

Issue - State: closed - Opened by EliahKagan over 1 year ago - 2 comments
Labels: content, code security

#34203 - update commit message section

Pull Request - State: closed - Opened by gagan-bhullar-tech over 1 year ago - 2 comments
Labels: content, code security

#34203 - update commit message section

Pull Request - State: closed - Opened by gagan-bhullar-tech over 1 year ago - 3 comments
Labels: content, code security

#34189 - Update secret-scanning-patterns.md

Pull Request - State: closed - Opened by cqueern over 1 year ago - 4 comments
Labels: content, waiting for review, code security

#34149 - fix: dependabot commit config

Pull Request - State: closed - Opened by gagan-bhullar-tech over 1 year ago - 6 comments
Labels: content, waiting for review, dependabot, code security, needs SME

#34090 - Update about-security-overview.md for customer feedback

Pull Request - State: closed - Opened by felicitymay over 1 year ago - 3 comments
Labels: content, code security

#34090 - Update about-security-overview.md for customer feedback

Pull Request - State: closed - Opened by felicitymay over 1 year ago - 4 comments
Labels: content, code security

#34052 - Fix typos

Pull Request - State: closed - Opened by omahs over 1 year ago - 2 comments
Labels: content, code security, account-and-profile

#34052 - Fix typos

Pull Request - State: closed - Opened by omahs over 1 year ago - 3 comments
Labels: content, code security, account-and-profile

#34047 - Added guidance for configuring Cloudsmith as a private registry

Pull Request - State: closed - Opened by ciaracarey over 1 year ago - 7 comments
Labels: content, code security, needs SME

#34047 - Added guidance for configuring Cloudsmith as a private registry

Pull Request - State: open - Opened by ciaracarey over 1 year ago - 4 comments
Labels: content, waiting for review, code security, needs SME

#33996 - Dependabot commit config `include: "scope"` output explainer

Issue - State: closed - Opened by janbrasna over 1 year ago - 5 comments
Labels: help wanted, content, code security, SME reviewed

#33995 - Dependabot yml `commit-message` prefs also impact PR titles

Issue - State: closed - Opened by janbrasna over 1 year ago - 3 comments
Labels: help wanted, content, code security

#33763 - Update exporting-a-software-bill-of-materials-for-your-repository.md

Pull Request - State: closed - Opened by zbraiterman over 1 year ago - 3 comments
Labels: content, code security

#33763 - Update exporting-a-software-bill-of-materials-for-your-repository.md

Pull Request - State: closed - Opened by zbraiterman over 1 year ago - 4 comments
Labels: content, code security

#33268 - Remove note that is contradicted in the subsequent paragraph

Pull Request - State: closed - Opened by jmandel almost 2 years ago - 7 comments
Labels: content, waiting for review, code security

#33268 - Remove note that is contradicted in the subsequent paragraph

Pull Request - State: closed - Opened by jmandel almost 2 years ago - 6 comments
Labels: content, waiting for review, code security

#33117 - Update configuring-dependabot-security-updates.md

Pull Request - State: closed - Opened by vlj91 almost 2 years ago - 3 comments
Labels: content, code security

#33117 - Update configuring-dependabot-security-updates.md

Pull Request - State: closed - Opened by vlj91 almost 2 years ago - 4 comments
Labels: content, code security

#33083 - Typo on code scanning troubleshooting docs Error: 403 "Resource not accessible by integration"

Issue - State: closed - Opened by NoahCallaway almost 2 years ago - 2 comments
Labels: content, code security

#32834 - Update about-secret-scanning.md

Pull Request - State: closed - Opened by davidbenjaminnovotny almost 2 years ago - 4 comments
Labels: content, code security

#32834 - Update about-secret-scanning.md

Pull Request - State: closed - Opened by davidbenjaminnovotny almost 2 years ago - 3 comments
Labels: content, code security

#32450 - Update dependabot/fetch-metadata refs to v2

Pull Request - State: closed - Opened by Kai-Richardson almost 2 years ago - 3 comments
Labels: content, waiting for review, code security

#32383 - Fix typo for event trigger

Pull Request - State: closed - Opened by dariocurr almost 2 years ago - 3 comments
Labels: content, code security

#32345 - Document `@dependabot ignore this patch version` command

Pull Request - State: closed - Opened by corneliusroemer almost 2 years ago - 2 comments
Labels: content, waiting for review, code security

#32345 - Document `@dependabot ignore this patch version` command

Pull Request - State: closed - Opened by corneliusroemer almost 2 years ago - 6 comments
Labels: content, waiting for review, code security

#32344 - Undocumented dependabot command: `ignore patch version`

Issue - State: closed - Opened by corneliusroemer almost 2 years ago - 1 comment
Labels: content, code security

#32160 - Info about security-and-quality query suite missing

Issue - State: closed - Opened by woeterman94 about 2 years ago - 10 comments
Labels: content, waiting for review, code security, needs SME, test-create-tracking-issue

#32149 - Update ignore section of with example for github-actions : configuration-options-for-the-dependabot.yml-file.md

Pull Request - State: closed - Opened by osarobo about 2 years ago - 4 comments
Labels: content, waiting for review, code security

#32074 - Update sarif-invalid.md

Pull Request - State: closed - Opened by tibbon about 2 years ago - 4 comments
Labels: content, code security

#32074 - Update sarif-invalid.md

Pull Request - State: closed - Opened by tibbon about 2 years ago - 3 comments
Labels: content, code security

#32045 - Clarify that MITRE != The CVE Program

Pull Request - State: closed - Opened by andrewpollock about 2 years ago - 4 comments
Labels: content, waiting for review, code security

#32045 - Clarify that MITRE != The CVE Program

Pull Request - State: closed - Opened by andrewpollock about 2 years ago - 3 comments
Labels: content, waiting for review, code security

#31845 - fix example

Pull Request - State: closed - Opened by yeongrokgim about 2 years ago - 3 comments
Labels: content, code security

#31845 - fix example

Pull Request - State: closed - Opened by yeongrokgim about 2 years ago - 4 comments
Labels: content, code security

#31709 - Apply style guides to "Manage security & analysis"

Pull Request - State: closed - Opened by itecompro about 2 years ago - 3 comments
Labels: content, code security

#31518 - Possible mistranslation to Japanese (and vague original English text) about auto-merging Dependabot PRs

Issue - State: closed - Opened by whitphx about 2 years ago - 2 comments
Labels: content, code security

#31043 - Fix CodeQL default setup docs

Pull Request - State: closed - Opened by FidelusAleksander about 2 years ago - 2 comments
Labels: content, code security

#30947 - python-built-in-queries needs python, not cpp

Pull Request - State: closed - Opened by brondsem about 2 years ago - 3 comments
Labels: content, waiting for review, code security

#30892 - fix `committing` and `encompasses` in content/code-security locked files

Issue - State: closed - Opened by jsoref about 2 years ago - 1 comment
Labels: content, waiting for review, code security

#30872 - Fix docs for CodeQL query suites

Pull Request - State: closed - Opened by garysassano about 2 years ago - 6 comments
Labels: content, waiting for review, code security

#28862 - fix(docs): Updated the getting started guide of code-security with consistent monospace font for file/directory names

Pull Request - State: closed - Opened by Jegan-Kunniya over 2 years ago - 5 comments
Labels: content, waiting for review, code security

#28808 - fix(docs): Code scanning: Clarify the descriptions of some SARIF fields

Pull Request - State: closed - Opened by Jegan-Kunniya over 2 years ago - 4 comments
Labels: content, hacktoberfest-accepted, ready to merge, waiting for review, code security

#28393 - Update "getting started" articles for code security to use monospace font for file/directory names consistently

Issue - State: closed - Opened by felicitymay over 2 years ago - 5 comments
Labels: help wanted, content, code security, pumpkin-spice

#28392 - Use supported method to stop text wrapping in tables

Issue - State: closed - Opened by felicitymay over 2 years ago
Labels: help wanted, content, code security

#28103 - fix github-action dependabot directory

Pull Request - State: closed - Opened by KonradHoeffner over 2 years ago - 7 comments
Labels: content, waiting for review, dependabot, code security

#28056 - Fix indentation of groups yaml example

Pull Request - State: closed - Opened by DenverCoder1 over 2 years ago - 4 comments
Labels: content, waiting for review, dependabot, code security

#27987 - DOCS: Examples of `groups` parameter for Dependabot updates has wrong indentation level

Issue - State: closed - Opened by connortann over 2 years ago - 4 comments
Labels: content, dependabot, code security

#27866 - Fix sections in the "Configure dependabot.yml" docs being affected by a recent unrelated change.

Pull Request - State: closed - Opened by orendain over 2 years ago - 4 comments
Labels: content, waiting for review, dependabot, code security

#26538 - Dependabot private Ruby registry config: Fix indentation of `replaces-base`

Pull Request - State: open - Opened by patbl over 2 years ago - 3 comments
Labels: content, waiting for review, dependabot, code security

#26520 - Temporary private forks, made for GitHub Security Advisories, should have their naming convention/format documented

Issue - State: closed - Opened by ScriptAutomate over 2 years ago - 4 comments
Labels: content, waiting for review, code security, needs SME

#26497 - Suggest resolving symlinks before generating sarif reports

Issue - State: closed - Opened by jsoref over 2 years ago - 10 comments
Labels: help wanted, content, code security

#26493 - Dependabot supports npm indirect dependency updating

Pull Request - State: closed - Opened by Bo98 over 2 years ago - 9 comments
Labels: content, waiting for review, dependabot, code security, needs SME

#26300 - fix codeql database api 404 error

Pull Request - State: closed - Opened by Y4er over 2 years ago - 4 comments
Labels: content, waiting for review, codeql, code security

#24675 - Possible vulnerability due to bad action example.

Issue - State: closed - Opened by FeeeeK almost 3 years ago - 12 comments
Labels: help wanted, content, actions, dependabot, code security

#22875 - Adjust language in global security advisories intro

Pull Request - State: closed - Opened by bdragon about 3 years ago - 4 comments
Labels: content, code security

#21930 - Using gh in an workflow seems to require setting GH_TOKEN

Issue - State: closed - Opened by mkutz over 3 years ago - 16 comments
Labels: help wanted, content, dependabot, code security, SME reviewed