Skip to content

/ enable-security-alerts-sample

This repository contains a sample script which can be used to enable security vulnerability alerts in all of the repositories in a given organization.

MIT License
54 stars 24 forks
Star
Notifications
master
Switch branches/tags
2 branches 0 tags
Code
Clone

Use Git or checkout with SVN using the web URL.

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
lib
 
 
shell_script
 
 
.env.example
 
 
.gitignore
 
 
CODE-OF-CONDUCT.md
 
 
CONTRIBUTING.md
 
 
LICENSE
 
 
README.md
 
 
enable-automated-security-fixes-for-org.js
 
 
enable-security-alerts-for-org-check.js
 
 
enable-security-alerts-for-org.js
 
 
package-lock.json
 
 
package.json
 
 
Enable Dependabot alerts and Dependabot security updates sample Node script Prerequisites Calling this script to enable Dependabot alerts Calling this script to check for enabled Dependabot alerts Calling this script to enable Dependabot security updates Shell script Prerequisites Calling this script to enable Dependabot alerts Calling this script to enable Dependabot security updates Contributing License

README.md

Enable Dependabot alerts and Dependabot security updates sample

This repository contains sample scripts for Node and Bash which can be used to enable security alerts and automated security fixes in all of the repositories in a given organization.

This project is being provided as a sample only which illustrates how to enable Dependabot alerts and enable Dependabot security updates in all repositories in a given organization.

Node script

Note: This node script is also available integrated into the GitHub Administration Tool (ghad).

Prerequisites

  • Install Node
  • Clone this repository
  • At the commandline, run npm install
  • Generate a new personal access token with repo and read:org permissions
  • Copy .env.example to .env and include your new personal access token in the GH_AUTH_TOKEN value.

Calling this script to enable Dependabot alerts

  • At the commandline, run node enable-security-alerts-for-org.js myorgname where myorgname is your organization. This will enable Dependabot alerts on all repositories in your organization.

Calling this script to check for enabled Dependabot alerts

  • At the commandline, run node enable-security-alerts-for-org-check.js myorgname where myorgname is your organization. This will enable Dependabot alerts on all repositories in your organization.

Calling this script to enable Dependabot security updates

You'll need to enable security alerts before you can Dependabot security updates

  • At the commandline, run node enable-automated-security-fixes-for-org.js myorgname where myorgname is your organization. This will enable Dependabot security updates on all repositories in your organization.

Shell script

Prerequisites

Calling this script to enable Dependabot alerts

  • At the commandline, run ./shell_script/enable_vulnerability_alerts_for_entire_org.sh myorgname accessToken where myorgname is your organization, and accessToken is the personal access token you generated earlier.

Calling this script to enable Dependabot security updates

You'll need to enable Dependabot alerts before you can enable Dependabot security updates

  • At the commandline, run ./shell_script/enable_automated_security_fixes_for_entire_org.sh myorgname accessToken where myorgname is your organization, and accessToken is the personal access token you generated earlier.

Contributing

If you'd like to contribute to this sample with fixes, or support for other platforms, please follow the contribution guidelines.

License

This project is available under the MIT license.

About

This repository contains a sample script which can be used to enable security vulnerability alerts in all of the repositories in a given organization.

Resources

Readme

License

MIT License

Releases

No releases published

Packages

No packages published

Contributors 11

Languages