Track additional Dependabot configuration changes in audit logs
Published: (February 10, 2026 at 09:13 AM EST)
1 min read
Source: GitHub Changelog
Source: GitHub Changelog
New Dependabot audit log events
Two new event types are now available to track changes to Dependabot settings through your organization and enterprise audit logs.
-
Dependabot vulnerability updates toggle – logs when someone enables or disables Dependabot vulnerability updates on a repository. Learn more in our
dependabot_security_updatesdocumentation. -
Self‑hosted runner configuration – logs when someone enables or disables Dependabot on self‑hosted runners. Learn more in our
repository_dependency_updates_self_hosteddocumentation.
Each event captures the actor who made the change and when it occurred. You’ll find these events in your organization audit log or enterprise audit log.
Benefits of the new data
- Track configuration changes for compliance and auditing purposes.
- Identify unauthorized modifications to security settings.
- Perform forensic investigations when needed.
Join the discussion in the GitHub Community.