github.com/captn3m0/skills-secure-repository-supply-chain.git

author	github-actions <41898282+github-actions[bot]@users.noreply.github.com>	2025-05-09 12:20:48.0 +00:00:00
committer	github-actions <41898282+github-actions[bot]@users.noreply.github.com>	2025-05-09 12:20:48.0 +00:00:00
commit	6795058f43c826b886c874a66a85e28db2cc9fb4 [patch]
tree	1febad5fe6458f1f43d61c3f7f55841bffdfd729
parent	18310d6b0fa84cb476d7816c30610644ff44a10b
download	6795058f43c826b886c874a66a85e28db2cc9fb4.tar.gz

Start exercise

Diff

 README.md | 45 +++++++--------------------------------------
 1 file changed, 7 insertions(+), 38 deletions(-)

diff --git a/README.md b/README.md
index 216d3f5..4351037 100644
--- a/README.md
+++ a/README.md
@@ -1,47 +1,16 @@
# Secure your repository's supply chain
# Secure your Repository&#39;s Supply Chain

_Secure your supply chain, understand dependencies in your environment, know about vulnerabilities in those dependencies and patch them._
<img src="https://octodex.github.com/images/Professortocat_v2.png" align="right" height="200px" />

## Welcome
Hey **captn3m0**!

GitHub helps you secure your supply chain, from understanding the dependencies in your environment, to knowing about vulnerabilities in those dependencies and patching them.
Mona here. I'm done preparing your exercise. Hope you enjoy! 💚

- **Who this is for**: Developers, DevOps Engineers, Site Reliability Engineers, Security experts
- **What you'll learn**: How to view repository dependencies, view Dependabot alerts, and enable Dependabot security and version updates
- **What you'll build**: Repository dependencies, Dependabot alerts, pull requests to fix dependencies and version updates
- **Prerequisites**: None
- **Timing**: This exercise can be completed in under an hour
Remember, it's self-paced so feel fee to take a break! ☕️

In this exercise, you will explore:
[![](https://img.shields.io/badge/Go%20to%20Exercise-%E2%86%92-1f883d?style=for-the-badge&logo=github&labelColor=197935)](https://github.com/captn3m0/skills-secure-repository-supply-chain/issues/1)

1. Dependency graph
2. Dependency alerts
3. Dependency security updates
4. Dependency versions updates

### How to start this exercise

Simply copy the exercise to your account, then give your favorite Octocat (Mona) **about 20 seconds** to prepare the first lesson, then **refresh the page**.

[![](https://img.shields.io/badge/Copy%20Exercise-%E2%86%92-1f883d?style=for-the-badge&logo=github&labelColor=197935)](https://github.com/new?template_owner=skills&template_name=secure-repository-supply-chain&owner=%40me&name=skills-secure-repository-supply-chain&description=Exercise:+Secure+your+Repository+Supply+Chain&visibility=public)

<details>
<summary>Having trouble? 🤷</summary><br/>

When copying the exercise, we recommend the following settings:

- For owner, choose your personal account or an organization to host the repository.

- We recommend creating a public repository, since private repositories will use Actions minutes.

If the exercise isn't ready in 20 seconds, please check the [Actions](../../actions) tab.

- Check to see if a job is running. Sometimes it simply takes a bit longer.

- If the page shows a failed job, please submit an issue. Nice, you found a bug! 🐛

</details>

---


&copy; 2025 GitHub &bull; [Code of Conduct](https://www.contributor-covenant.org/version/2/1/code_of_conduct/code_of_conduct.md) &bull; [MIT License](https://gh.io/mit)