Skip to content

Commit 33b8fa8

Browse files
jakecoffmanjakecoffman
authored
Update README.md (dependabot#102)
1 parent fb43a2a commit 33b8fa8

File tree

1 file changed

+30
-3
lines changed

1 file changed

+30
-3
lines changed

README.md

+30-3
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,39 @@
1-
<h1 align="center">
1+
<div align="center">
22
<picture>
33
<source media="(prefers-color-scheme: light)" srcset="https://user-images.githubusercontent.com/7659/174594540-5e29e523-396a-465b-9a6e-6cab5b15a568.svg">
44
<source media="(prefers-color-scheme: dark)" srcset="https://user-images.githubusercontent.com/7659/174594559-0b3ddaa7-e75b-4f10-9dee-b51431a9fd4c.svg">
55
<img src="https://user-images.githubusercontent.com/7659/174594540-5e29e523-396a-465b-9a6e-6cab5b15a568.svg" alt="Dependabot" width="336">
66
</picture>
7-
</h1>
7+
</div>
88

9-
# Dependabot Demo Repository
9+
## Dependabot Demo Repository
1010

1111
This repo contains some projects with outdated dependencies. Fork it to try out
1212
Dependabot :dependabot:!
13+
14+
### Enabling Security Updates
15+
16+
- In your fork, click the **Settings** tab
17+
- In the left hand side navigation, click **Code security and analysis**
18+
- Enable **Dependabot security updates** or **Grouped security updates**
19+
- Dependabot will now start creating PRs for detected security vulnerabilities
20+
- Go into the **Security** tab and click **Dependabot** in the left hand side navigation to see what Dependabot is working on
21+
22+
<img width="929" alt="screenshot showing Dependabot working on Security Updates" src="https://github.com/dependabot/demo/assets/886768/9295c61a-631b-4c56-9c00-ff078874f362">
23+
24+
After about 5 minutes you should see some PRs open. Merge them and the Securty Alerts will close 🎉
25+
26+
### Enabling Version Updates
27+
28+
This demo includes a `dependabot.yml` which configures [Version Updates](https://docs.github.com/github/administering-a-repository/keeping-your-dependencies-updated-automatically), but forks don't automatically start with Dependabot enabled.
29+
30+
The enable Dependabot on your fork:
31+
- Click the **Insights** tab
32+
- In the left hand side navigation, click **Dependency Graph**
33+
- Click on the **Dependabot** tab
34+
- Click on the **Enable Dependabot** button
35+
- After a moment, refresh the page and you should see Dependabot hard at work
36+
37+
<img width="917" alt="screenshot showing Dependabot working on Version Updates" src="https://github.com/dependabot/demo/assets/886768/4adf5727-255a-4ae1-97f7-70e94dc1134b">
38+
39+
After a few minutes, you should get some more PRs!

0 commit comments

Comments
 (0)