Improvement
• 1 minute read

Dependabot hardens support for private registries

Summary

We've hardened our Dependabot support for private registries such that it will no longer make package requests to public registries if private registries are configured for the following ecosystems: Bundler…

We've hardened our Dependabot support for private registries such that it will no longer make package requests to public registries if private registries are configured for the following ecosystems:

  • Bundler
  • Docker
  • Gradle
  • Maven
  • npm
  • Nuget
  • Python
  • Yarn

Learn more about configuring Dependabot version updates to only access private registries.

New Releases

Improvements

Deprecations

Back to top