GitHub's audit log allows organization and enterprise admins to quickly review the actions performed by members of their organization or enterprise. For Dependabot alerts, the audit log includes actions such as repository enablement, creation or reintroduction of alerts, dismissal of alerts, and resolving of alerts.
The audit log now supports the following improvements:
- Dismissal comments, if provided with a Dependabot alert, are now displayed in the audit log
- The audit log API for Dependabot alerts now supports several new fields:
alert_number
,ghsa_id
,dismiss_reason
, anddismiss_comment
. - Additional minor improvements, including links back to the alert and correct timestamps added to events.
This release is available for organization and enterprise admins (including GHES 3.7 and later).
For more information, view documentation on Dependabot alerts in the GitHub audit log.