VOOZH about

URL: https://docs.github.com/en/code-security/how-tos/secure-your-supply-chain/manage-your-dependency-security/prioritize-with-preset-rules

⇱ Using GitHub preset rules to prioritize Dependabot alerts - GitHub Docs

Skip to main content

Using GitHub preset rules to prioritize Dependabot alerts

Focus on alerts that matter by auto-dismissing low impact development alerts for npm dependencies.

Who can use this feature?

  • Organization owners
  • Security managers
  • Users with admin access (can enable, disable, and view GitHub presets for the repository)

In this article

Prerequisites

Before you enable GitHub presets for your repository, you should be familiar with their functionality and purpose. See Dependabot auto-triage rules.

Enabling GitHub preset rules

  1. On GitHub, navigate to the main page of the repository.

  2. Under your repository name, click Settings. If you cannot see the "Settings" tab, select the dropdown menu, then click Settings.

  3. In the "Security" section of the sidebar, click Advanced Security.

  4. In the "Dependabot" section, to the right of "Dependabot rules", click .

  5. In the "GitHub presets" section, to the right of the rule you want to enable, click .

  6. In the "State" section, select the dropdown menu, then click Enabled.

  7. Click Save rule.