Github intends to build Security Alerts on this basis to alert developers to what vulnerabilities are found in the project library and urge them to take action as soon as possible to block serious security risks or catastrophic data leaks.
The company also said that if possible, it will provide developers with the appropriate steps to solve the problem. “Dependency map” has been officially launched today, and “security alarm” function will soon come.
Dependency Graph supports both public and private libraries, as well as Ruby and JavaScript programming languages (followed by Python).
Reference: thenextweb
