Configure specific tools

Learn how to configure specific GitHub security and quality tools—such as the dependency graph, code scanning, secret scanning, and Dependabot—for your enterprise.

Enabling the dependency graph for your enterprise

You can allow users to identify their projects' dependencies by enabling the dependency graph.

Configuring code scanning for your appliance

You can enable, configure, and disable code scanning for your enterprise. Code scanning allows users to scan code for vulnerabilities and errors.

Configuring dependency review for your appliance

To help users understand dependency changes when reviewing pull requests, you can enable, configure, and disable dependency review for GitHub Enterprise Server.

Configuring secret scanning for your appliance

You can enable, configure, and disable secret scanning for GitHub Enterprise Server. Secret scanning allows users to scan code for accidentally committed secrets.

Viewing the vulnerability data for your enterprise

You can view vulnerability data from the GitHub Advisory Database on GitHub Enterprise Server.

Configuring Dependabot to work with limited internet access

You can configure Dependabot to generate pull requests for version and security updates using private registries when GitHub Enterprise Server has limited, or no, internet access.

Setting up Dependabot to run on github-hosted action runners using the Azure Private Network

You can configure an Azure Virtual Network (VNET) to run Dependabot on GitHub-hosted runners.