Running dependabot without github access token #11134
Unanswered
WhiteOlivierus
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I am exploring the possibility of using Dependabot for our projects hosted on GitLab. However, we have security concerns regarding any external calls to GitHub.
I have looked into the Dependabot core project and it seems feasible to run it independently. Can anyone confirm if it is possible to use Dependabot on GitLab without making calls to GitHub?
If this is not possible, could you please clarify what data is sent to GitHub and what information they have access to?
Thanks in advance.
Beta Was this translation helpful? Give feedback.
All reactions