Now, you can group multiple version updates in a single pull request.
A new alert rules engine for Dependabot leverages alert metadata to identify and auto-dismiss up to 15% of alerts as false positives.
Open source maintainers and security researchers embrace a new best practice to report and fix vulnerabilities.
Developers and compliance teams get a new SBOM generation tool for cloud repositories.
Default settings will allow developers with write and maintain access to see and resolve Dependabot alerts.
Dependabot is getting a little smarter—and, a little quieter—by reducing bot-based noise from repositories based on your interaction with Dependabot.
Cross-platform apps built with the popular Flutter toolkit can now benefit from Dependabot alerts.