Hallo, Entdecker! An dieser Seite wird aktiv gearbeitet, oder sie wird noch übersetzt. Die neuesten und genauesten Informationen findest Du in unserer englischsprachigen Dokumentation.
Deutsch

Nach Produkt erkunden

GitHub
Deutsch

Diese Version von GitHub Enterprise wurde eingestellt am 2021-06-09. Es wird keine Patch-Freigabe vorgenommen, auch nicht für kritische Sicherheitsprobleme. Für eine bessere Leistung, verbesserte Sicherheit und neue Features nimm ein Upgrade auf die neueste Version von GitHub Enterprise vor. Wende Dich an den GitHub Enterprise-Support, um Hilfe beim Upgrade zu erhalten.

Artikelversion: Enterprise Server 2.21
Artikelversion: Enterprise Server 2.21

Configuring notifications for vulnerable dependencies

Optimize how you receive notifications about security alerts.

About notifications for vulnerable dependencies

When GitHub Enterprise Server detects vulnerable dependencies in your repositories, it sends security alerts.

Your site administrator needs to enable security alerts for vulnerable dependencies for your GitHub Enterprise Server instance before you can use the feature. For more information, see "Enabling alerts for vulnerable dependencies on GitHub Enterprise Server."

By default, if your site administrator has configured email for notifications on your enterprise, you will receive security alerts by email.

Site administrators can also enable security alerts without notifications. For more information, see "Enabling security alerts for vulnerable dependencies on GitHub Enterprise Server."

Configuring notifications for security alerts

You can configure notification settings for yourself or your organization from the Manage notifications drop-down shown at the top of each page. Weitere Informationen findest Du unter „Benachrichtigungen konfigurieren."

You can choose the delivery method for notifications about security alerts on repositories that you are watching, as well as the frequency at which the notifications are sent to you.

By default, if your site administrator has configured email for notifications on your instance, you will receive security alerts:

  • by email, an email is sent every time a vulnerability is found (Email each time a vulnerability is found option)
  • in the user interface, as warnings in your repository's file and code views (UI alerts option)
  • on the command line, as warnings that are displayed as callbacks when you push to repositories with vulnerabilities (Command Line option)
  • in your inbox, as web notifications (Web option)

You can customize the way you are notified about security alerts. For example, you can receive a weekly digest email summarizing alerts for up to 10 of your repositories using the Email a digest summary of vulnerabilities and Weekly security email digest options.

Optionen für Sicherheitswarnungen

Note: You can filter your notifications on GitHub to show security alerts. Weitere Informationen findest Du unter „Benachrichtigungen über Deinen Posteingang verwalten."

Email notifications for security alerts that affect one or more repositories include the X-GitHub-Severity header field. You can use the value of the X-GitHub-Severity header field to filter email notifications for security alerts. Weitere Informationen findest Du unter „Benachrichtigungen konfigurieren.“

How to reduce the noise from notifications for vulnerable dependencies

If you are concerned about receiving too many notifications for security alerts, we recommend you opt into the weekly email digest, or turn off notifications while keeping security alerts enabled. You can still navigate to see your security alerts in your repository's Security tab.

Weiterführende Informationen