Dismiss Dependabot alerts via API

It's now possible to dismiss Dependabot alerts via the GraphQL API. For more info, see our docs.

As an administrator of an organization, you can now moderate disruptive behavior in your community on the go. Tap Block from organization from a comment menu on an issue, pull request, or discussion to block a user for a set time frame and choose to hide their comments. Learn more about blocking users from your organization.

Read more about GitHub Mobile and send us your feedback to help us improve.

See more

A warning is now displayed when a file's contents include bidirectional Unicode text. Such text can be interpreted or compiled differently than it appears in a user interface. For example, hidden, bidirectional Unicode characters can be used to swap segments of text in a file. This can cause code to appear one way and be interpreted or compiled another way.

image

This security issue is the topic of the Common Vulnerabilities and Exposures (CVE) publication: CVE-2021-42574. If your use of bidirectional Unicode characters is intentional and not malformed, you can ignore the warning.

To review a file for which this warning is displayed, open it in an editor that will display the hidden, bidirectional Unicode characters, like Visual Studio Code which highlights the characters by default. Then, verify that the characters are necessary and not disguising text that will be interpreted or compiled differently than it appears.

For more information, refer to Trojan Source: Invisible Source Code Vulnerabilities.

See more