Ensure Vulnerability alerts are enabled

GitHub sends Dependabot alerts when detect that scanned repository uses a vulnerable dependency or malware.

Risk Level: medium
Platform: Github
Spectral Rule ID: GH-HRDS003


Activate Vulnerability alerts:


  1. Go to the repository 'Insights' tab.
  2. Click on 'Dependency graph'.
  3. Click on 'Allow access'

Read more: