Skip to content

Security alerts are now available in Python

Python users can now access the dependency graph and receive security alerts whenever their repositories depend on packages with known security vulnerabilities.

To configure the kind or frequency of notifications you receive, visit your profile’s notification settings page and select your preferred option.

Read the documentation to learn more.

Project maintainers shouldn’t have to risk their personal safety in order to build a strong community around their code. While various moderation actions already create timeline entries on the relevant issue or pull request, deleted comments and locked conversation timeline entries are now anonymous to non-collaborators.

When a project maintainer deletes a comment or locks a conversation in an organization-owned repository, users with write access to the repository will continue to see the moderator’s identity, while those without write access will simply see the organization’s name as the actor. For more information, see the “Deleting a comment” and “Locking a conversation” articles.

See more