Skip to content
Navigation Menu
Toggle navigation
Sign in
Appearance settings
Platform
GitHub Copilot
Write better code with AI
GitHub Spark
New
Build and deploy intelligent apps
GitHub Models
New
Manage and compare prompts
GitHub Advanced Security
Find and fix vulnerabilities
Actions
Automate any workflow
Codespaces
Instant dev environments
Issues
Plan and track work
Code Review
Manage code changes
Discussions
Collaborate outside of code
Code Search
Find more, search less
Explore
Why GitHub
Documentation
GitHub Skills
Blog
Integrations
GitHub Marketplace
MCP Registry
View all features
Solutions
By company size
Enterprises
Small and medium teams
Startups
Nonprofits
By use case
App Modernization
DevSecOps
DevOps
CI/CD
View all use cases
By industry
Healthcare
Financial services
Manufacturing
Government
View all industries
View all solutions
Resources
Topics
AI
DevOps
Security
Software Development
View all
Explore
Learning Pathways
Events & Webinars
Ebooks & Whitepapers
Customer Stories
Partners
Executive Insights
Open Source
GitHub Sponsors
Fund open source developers
The ReadME Project
GitHub community articles
Repositories
Topics
Trending
Collections
Enterprise
Enterprise platform
AI-powered developer platform
Available add-ons
GitHub Advanced Security
Enterprise-grade security features
Copilot for business
Enterprise-grade AI features
Premium Support
Enterprise-grade 24/7 support
Pricing
Search or jump to...
Search code, repositories, users, issues, pull requests...
Search syntax tips
Provide feedback
Saved searches
Use saved searches to filter your results more quickly
Sign in
Sign up
Appearance settings
Resetting focus
You signed in with another tab or window.
Reload
to refresh your session.
You signed out in another tab or window.
Reload
to refresh your session.
You switched accounts on another tab or window.
Reload
to refresh your session.
Dismiss alert
{{ message }}
dependabot
/
dependabot-core
Public
Notifications
You must be signed in to change notification settings
Fork
1.2k
Star
5.3k
Code
Issues
1.3k
Pull requests
167
Discussions
Actions
Projects
1
Security
Uh oh!
There was an error while loading.
Please reload this page
.
Insights
Additional navigation options
Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights
Org wide Dependabot dashboard
#2936 ·
sandeshRazorpay
opened
on Jan 3, 2021
24
Bazel support?
#2196 ·
petemounce
opened
on Jan 25, 2019
25
Issues
Search Issues
is
:
issue
state
:
open
is:issue state:open
Search
Labels
Milestones
New issue
Search results
Open
Closed
Cy
L: github:actions
GitHub Actions
GitHub Actions
Status: Open.
#13451
In dependabot/dependabot-core;
·
Isaac9710009
opened
on Nov 2, 2025
Je
Status: Open.
#13450
In dependabot/dependabot-core;
·
Isaac9710009
opened
on Nov 2, 2025
Rust crate updates not properly ignoring major versions
Ecosystems
Used by the maintainer team for internal-facing project tracking
Used by the maintainer team for internal-facing project tracking
L: rust:cargo
Rust crates via cargo
Rust crates via cargo
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13434
In dependabot/dependabot-core;
·
davidv1992
opened
on Oct 30, 2025
Out of memory issue when using dependabot-updater-maven on a FIPS-enabled host
Ecosystems
Used by the maintainer team for internal-facing project tracking
Used by the maintainer team for internal-facing project tracking
L: docker
Docker containers
Docker containers
L: java:maven
Maven packages via Maven
Maven packages via Maven
L: javascript
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13433
In dependabot/dependabot-core;
·
Otterian
opened
on Oct 30, 2025
Dependabot switched to using pip as ecosystem instead of uv as configured
L: github:actions
GitHub Actions
GitHub Actions
L: javascript
L: python
L: python:uv
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13426
In dependabot/dependabot-core;
·
sgerrand
opened
on Oct 29, 2025
Lock file not updated in yarn v4 workspace with split directories
L: github:actions
GitHub Actions
GitHub Actions
L: javascript
Medium
1-3 days of work
1-3 days of work
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13425
In dependabot/dependabot-core;
·
dorshinar
opened
on Oct 29, 2025
Dependabot ignores lowest python version in pyproject.toml and uses the latest instead
L: python
Status: Open.
#13424
In dependabot/dependabot-core;
·
shachafl
opened
on Oct 29, 2025
[Transitive Updates]Maven Version Updates seem to be adding transitive Dependencies
L: java:maven
Maven packages via Maven
Maven packages via Maven
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13418
In dependabot/dependabot-core;
·
ryanbrandenburg
opened
on Oct 28, 2025
dependabot false alarm
L: go:modules
Golang modules
Golang modules
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13411
In dependabot/dependabot-core;
·
pfi79
opened
on Oct 28, 2025
dynamic in pyproject.toml only works if dedicated section
L: github:actions
GitHub Actions
GitHub Actions
L: python
T: bug 🐞
Something isn't working
Something isn't working
Status: Open.
#13410
In dependabot/dependabot-core;
·
priv-kweihmann
opened
on Oct 28, 2025
Differentiate between public and private registries
L: dart:pub
Dart packages via pub
Dart packages via pub
L: dotnet:nuget
NuGet packages via nuget or dotnet
NuGet packages via nuget or dotnet
T: feature-request
Requests for new features
Requests for new features
Status: Open.
#13409
In dependabot/dependabot-core;
·
BastianKamp
opened
on Oct 28, 2025
The <code>pub</code> issue labeler seems off
L: dart:pub
Dart packages via pub
Dart packages via pub
T: tech-debt ⚙️
Status: Open.
#13406
In dependabot/dependabot-core;
·
yeikel
opened
on Oct 28, 2025
You can’t perform that action at this time.