Github + Dependabot Integration

Dependabot is a Github service that automatically scans and alerts you to the vulnerabilities in your open source dependencies. This article provides a step-by-step guide to setting up the integration between Sprinto and GitHub.

Setting up the Integration:

Step 1: Log in to Sprinto with your Credentials.

Step 2: Under Security Hub go to Vulnerabilities.

Step 3: Click on Add monitoring source as highlighted in the screenshot below.

Step 4: Click on choose against Dependabot.

Step 5: If you have already integrated GitHubApp, the integration will be setup else Sprinto will ask you to integrate GithubApp.

If you need help to enable Dependabot alerts in GitHub, kindly go through this article for detailed steps.

Once you complete these steps, the integration will be up and running. Within the next 24 hours, Sprinto will be able to sync data and start reporting the same on the platform.

If you have any questions or concerns during the integration process, don't hesitate to reach out to Sprinto Support via the in-app chat or write to us at [email protected]. We're here to help!