About the dependency graph
The dependency graph is a summary of the manifest and lock files stored in a repository. For each repository, it shows dependencies, that is, the ecosystems and packages it depends on. GitHub Enterprise Server does not calculate information about dependents, the repositories and packages that depend on a repository. For more information, see "About the dependency graph"
After you enable the dependency graph for your enterprise, you can enable Dependabot to detect insecure dependencies in your repository. For more information, see "Enabling Dependabot for your enterprise."
Enabling the dependency graph
-
Sign in to your GitHub Enterprise Server instance at
http(s)://HOSTNAME/login
. -
In the administrative shell, enable the dependency graph on your GitHub Enterprise Server instance:
ghe-config app.github.dependency-graph-enabled true ghe-config app.github.vulnerability-alerting-and-settings-enabled true
Note: For more information about enabling access to the administrative shell via SSH, see "Accessing the administrative shell (SSH)."
-
Apply the configuration.
$ ghe-config-apply
-
Return to GitHub Enterprise Server.