Merge pull request #42297 from github/repo-sync

docs-bot · web-flow · commit 1dfda1addeb0 · 2026-01-08T07:36:57.000-08:00
Repo sync
diff --git a/content/code-security/concepts/index.md b/content/code-security/concepts/index.md
@@ -15,4 +15,6 @@ topics:
   - Dependencies
   - Dependabot
 contentType: concepts
----
+children:
+  - /vulnerability-reporting-and-management
+  - supply-chain-security
diff --git a/content/code-security/concepts/supply-chain-security/about-dependabot-alerts.md b/content/code-security/concepts/supply-chain-security/about-dependabot-alerts.md
@@ -8,6 +8,7 @@ redirect_from:
   - /github/managing-security-vulnerabilities/about-alerts-for-vulnerable-dependencies
   - /code-security/supply-chain-security/about-alerts-for-vulnerable-dependencies
   - /code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/about-alerts-for-vulnerable-dependencies
+  - /code-security/dependabot/dependabot-alerts/about-dependabot-alerts
 versions:
   fpt: '*'
   ghes: '*'
@@ -20,6 +21,7 @@ topics:
   - Repositories
   - Dependencies
 shortTitle: Dependabot alerts
+contentType: concepts
 ---
 <!--Marketing-LINK: From /features/security/software-supply-chain page "About alerts for vulnerable dependencies ".-->
 
diff --git a/content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md b/content/code-security/concepts/supply-chain-security/about-dependabot-auto-triage-rules.md
@@ -13,10 +13,12 @@ topics:
   - Vulnerabilities
   - Repositories
   - Dependencies
-shortTitle: About auto-triage rules
+shortTitle: Dependabot auto-triage rules
 redirect_from:
   - /code-security/dependabot/dependabot-alerts/using-alert-rules-to-prioritize-dependabot-alerts
   - /code-security/dependabot/dependabot-alert-rules/about-dependabot-alert-rules
+  - /code-security/dependabot/dependabot-auto-triage-rules/about-dependabot-auto-triage-rules
+contentType: concepts
 ---
 
 ## About {% data variables.dependabot.auto_triage_rules %}
diff --git a/content/code-security/concepts/supply-chain-security/about-dependabot-on-github-actions-runners.md b/content/code-security/concepts/supply-chain-security/about-dependabot-on-github-actions-runners.md
@@ -1,7 +1,7 @@
 ---
 title: About Dependabot on GitHub Actions runners
 intro: '{% data variables.product.prodname_dotcom %} automatically runs the jobs that generate {% data variables.product.prodname_dependabot %} pull requests on {% data variables.product.prodname_actions %} if you have {% data variables.product.prodname_actions %} enabled for the repository. When {% data variables.product.prodname_dependabot %} is enabled, these jobs will run by bypassing Actions policy checks and disablement at the repository or organization level.'
-shortTitle: About Dependabot on Actions
+shortTitle: Dependabot on Actions
 product: '{% data reusables.gated-features.dependabot-on-actions %}'
 versions:
   feature: dependabot-on-actions-opt-in
@@ -13,6 +13,9 @@ topics:
   - Actions
   - Dependencies
   - Repositories
+redirect_from:
+  - /code-security/dependabot/working-with-dependabot/about-dependabot-on-github-actions-runners
+contentType: concepts
 ---
 
 ## About {% data variables.product.prodname_dependabot %} on {% data variables.product.prodname_actions %} runners
diff --git a/content/code-security/concepts/supply-chain-security/about-dependabot-security-updates.md b/content/code-security/concepts/supply-chain-security/about-dependabot-security-updates.md
@@ -8,6 +8,7 @@ redirect_from:
   - /github/managing-security-vulnerabilities/about-dependabot-security-updates
   - /code-security/supply-chain-security/about-dependabot-security-updates
   - /code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies/about-dependabot-security-updates
+  - /code-security/dependabot/dependabot-security-updates/about-dependabot-security-updates
 versions:
   fpt: '*'
   ghec: '*'
@@ -20,6 +21,7 @@ topics:
   - Repositories
   - Dependencies
   - Pull requests
+contentType: concepts
 ---
 
 <!--Marketing-LINK: From /features/security/software-supply-chain page "About Dependabot security updates".-->
diff --git a/content/code-security/concepts/supply-chain-security/about-dependabot-version-updates.md b/content/code-security/concepts/supply-chain-security/about-dependabot-version-updates.md
@@ -1,6 +1,6 @@
 ---
 title: About Dependabot version updates
-intro: 'You can use {% data variables.product.prodname_dependabot %} to keep the packages you use updated to the latest versions.'
+intro: You can use {% data variables.product.prodname_dependabot %} to keep the packages you use updated to the latest versions.
 product: '{% data reusables.gated-features.dependabot-version-updates %}'
 redirect_from:
   - /github/administering-a-repository/about-dependabot
@@ -10,6 +10,7 @@ redirect_from:
   - /code-security/supply-chain-security/about-dependabot-version-updates
   - /code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/upgrading-from-dependabotcom-to-github-native-dependabot
   - /code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/about-dependabot-version-updates
+  - /code-security/dependabot/dependabot-version-updates/about-dependabot-version-updates
 versions:
   fpt: '*'
   ghec: '*'
@@ -22,6 +23,7 @@ topics:
   - Dependencies
   - Pull requests
 shortTitle: Dependabot version updates
+contentType: concepts
 ---
 
 {% data reusables.dependabot.enterprise-enable-dependabot %}
diff --git a/content/code-security/concepts/supply-chain-security/about-dependency-review.md b/content/code-security/concepts/supply-chain-security/about-dependency-review.md
@@ -1,6 +1,6 @@
 ---
 title: About dependency review
-intro: 'Dependency review lets you catch insecure dependencies before you introduce them to your environment, and provides information on license, dependents, and age of dependencies.'
+intro: Dependency review lets you catch insecure dependencies before you introduce them to your environment, and provides information on license, dependents, and age of dependencies.
 product: '{% data reusables.gated-features.dependency-review %}'
 shortTitle: Dependency review
 versions:
@@ -16,6 +16,8 @@ topics:
   - Pull requests
 redirect_from:
   - /code-security/supply-chain-security/about-dependency-review
+  - /code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review
+contentType: concepts
 ---
 
 ## About dependency review
diff --git a/content/code-security/concepts/supply-chain-security/about-supply-chain-security.md b/content/code-security/concepts/supply-chain-security/about-supply-chain-security.md
@@ -1,9 +1,10 @@
 ---
 title: About supply chain security
 intro: '{% data variables.product.github %} helps you secure your supply chain, from understanding the dependencies in your environment, to knowing about vulnerabilities in those dependencies, and patching them.'
-shortTitle: Supply chain security
+shortTitle: Supply chain features
 redirect_from:
   - /code-security/supply-chain-security/managing-vulnerabilities-in-your-projects-dependencies
+  - /code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security
 versions:
   fpt: '*'
   ghes: '*'
@@ -17,6 +18,7 @@ topics:
   - Dependencies
   - Pull requests
   - Repositories
+contentType: concepts
 ---
 
 ## About supply chain security at GitHub
diff --git a/content/code-security/concepts/supply-chain-security/about-the-dependency-graph.md b/content/code-security/concepts/supply-chain-security/about-the-dependency-graph.md
@@ -5,6 +5,7 @@ product: '{% data reusables.gated-features.dependency-graph %}'
 redirect_from:
   - /github/visualizing-repository-data-with-graphs/about-the-dependency-graph
   - /code-security/supply-chain-security/about-the-dependency-graph
+  - /code-security/supply-chain-security/understanding-your-software-supply-chain/about-the-dependency-graph
 versions:
   fpt: '*'
   ghes: '*'
@@ -15,6 +16,7 @@ topics:
   - Dependencies
   - Repositories
 shortTitle: Dependency graph
+contentType: concepts
 ---
 <!--Marketing-LINK: From /features/security and /features/security/software-supply-chain pages "How GitHub's dependency graph is generated".-->
 
diff --git a/content/code-security/concepts/supply-chain-security/best-practices-for-maintaining-dependencies.md b/content/code-security/concepts/supply-chain-security/best-practices-for-maintaining-dependencies.md
@@ -1,6 +1,6 @@
 ---
 title: Best practices for maintaining dependencies
-intro: 'Guidance and recommendations for maintaining the dependencies you use, including {% data variables.product.github %}''s security products that can help.'
+intro: Guidance and recommendations for maintaining the dependencies you use, including {% data variables.product.github %}'s security products that can help.
 allowTitleToDifferFromFilename: true
 versions:
   fpt: '*'
@@ -14,7 +14,10 @@ topics:
   - Repositories
   - Dependencies
   - Pull requests
-shortTitle: Dependency management best practices
+shortTitle: Dependency best practices
+redirect_from:
+  - /code-security/dependabot/maintain-dependencies/best-practices-for-maintaining-dependencies
+contentType: concepts
 ---
 
 ## Best practices for maintaining dependencies
diff --git a/content/code-security/concepts/supply-chain-security/immutable-releases.md b/content/code-security/concepts/supply-chain-security/immutable-releases.md
@@ -1,6 +1,6 @@
 ---
 title: Immutable releases
-intro: 'Learn about immutable releases and how they can help you maintain the integrity of your software supply chain.'
+intro: Learn about immutable releases and how they can help you maintain the integrity of your software supply chain.
 versions:
   fpt: '*'
   ghec: '*'
@@ -9,6 +9,9 @@ topics:
   - Code Security
   - Vulnerabilities
   - Dependencies
+redirect_from:
+  - /code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases
+contentType: concepts
 ---
 
 **Immutable releases** are releases where the assets and associated Git tag cannot be changed after publication. The use of this type of release increases security by blocking supply chain attacks. Attackers cannot:
diff --git a/content/code-security/concepts/supply-chain-security/index.md b/content/code-security/concepts/supply-chain-security/index.md
@@ -0,0 +1,21 @@
+---
+title: Supply chain security
+intro: '{% data variables.product.github %}''s security features help you keep track of your projects'' dependencies and built artifacts.'
+versions:
+  fpt: '*'
+  ghes: '*'
+  ghec: '*'
+contentType: concepts
+children:
+  - about-supply-chain-security
+  - best-practices-for-maintaining-dependencies
+  - about-the-dependency-graph
+  - about-dependency-review
+  - about-dependabot-alerts
+  - about-dependabot-security-updates
+  - about-dependabot-version-updates
+  - about-dependabot-auto-triage-rules
+  - about-dependabot-on-github-actions-runners
+  - immutable-releases
+---
+
diff --git a/content/code-security/concepts/vulnerability-reporting-and-management/about-coordinated-disclosure-of-security-vulnerabilities.md b/content/code-security/concepts/vulnerability-reporting-and-management/about-coordinated-disclosure-of-security-vulnerabilities.md
@@ -6,10 +6,11 @@ redirect_from:
   - /code-security/repository-security-advisories/about-coordinated-disclosure-of-security-vulnerabilities
   - /code-security/security-advisories/repository-security-advisories/about-coordinated-disclosure-of-security-vulnerabilities
   - /code-security/security-advisories/guidance-on-reporting-and-writing/about-coordinated-disclosure-of-security-vulnerabilities
+  - /code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/about-coordinated-disclosure-of-security-vulnerabilities
 versions:
   fpt: '*'
   ghec: '*'
-type: overview
+contentType: concepts
 topics:
   - Security advisories
   - Vulnerabilities
diff --git a/content/code-security/concepts/vulnerability-reporting-and-management/about-global-security-advisories.md b/content/code-security/concepts/vulnerability-reporting-and-management/about-global-security-advisories.md
@@ -1,18 +1,20 @@
 ---
 title: About global security advisories
-intro: 'Global security advisories live in the {% data variables.product.prodname_advisory_database %}, a collection of CVEs and {% data variables.product.company_short %}-originated advisories affecting the open source world. You can contribute to improving global security advisories.'
+shortTitle: Global security advisories
+intro: Global security advisories live in the {% data variables.product.prodname_advisory_database %}, a collection of CVEs and {% data variables.product.company_short %}-originated advisories affecting the open source world. You can contribute to improving global security advisories.
 versions:
   fpt: '*'
   ghec: '*'
   ghes: '*'
-type: overview
+contentType: concepts
 topics:
   - Security advisories
   - Alerts
   - Vulnerabilities
   - CVEs
 redirect_from:
   - /code-security/security-advisories/global-security-advisories/about-global-security-advisories
+  - /code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/about-global-security-advisories
 ---
 
 ## About global security advisories
diff --git a/content/code-security/concepts/vulnerability-reporting-and-management/about-repository-security-advisories.md b/content/code-security/concepts/vulnerability-reporting-and-management/about-repository-security-advisories.md
@@ -1,18 +1,19 @@
 ---
 title: About repository security advisories
-intro: 'You can use repository security advisories to privately discuss, fix, and publish information about security vulnerabilities in your public repository.'
-shortTitle: About repository security advisories
+intro: You can use repository security advisories to privately discuss, fix, and publish information about security vulnerabilities in your public repository.
+shortTitle: Repository security advisories
 redirect_from:
   - /articles/about-maintainer-security-advisories
   - /github/managing-security-vulnerabilities/about-maintainer-security-advisories
   - /github/managing-security-vulnerabilities/about-github-security-advisories
   - /code-security/security-advisories/about-github-security-advisories
   - /code-security/repository-security-advisories/about-github-security-advisories-for-repositories
   - /code-security/security-advisories/repository-security-advisories/about-repository-security-advisories
+  - /code-security/security-advisories/working-with-repository-security-advisories/about-repository-security-advisories
 versions:
   fpt: '*'
   ghec: '*'
-type: overview
+contentType: concepts
 product: '{% data reusables.gated-features.private-vulnerability-reporting %}'
 topics:
   - Security advisories
diff --git a/content/code-security/concepts/vulnerability-reporting-and-management/about-the-github-advisory-database.md b/content/code-security/concepts/vulnerability-reporting-and-management/about-the-github-advisory-database.md
@@ -5,14 +5,16 @@ versions:
   fpt: '*'
   ghec: '*'
   ghes: '*'
-type: overview
+contentType: concepts
+shortTitle: GitHub Advisory database
 topics:
   - Security advisories
   - Alerts
   - Vulnerabilities
   - CVEs
 redirect_from:
   - /code-security/security-advisories/global-security-advisories/about-the-github-advisory-database
+  - /code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/about-the-github-advisory-database
 ---
 
 ## About the {% data variables.product.prodname_advisory_database %}
diff --git a/content/code-security/concepts/vulnerability-reporting-and-management/about-your-exposure-to-vulnerabilities-in-your-code-and-in-dependencies.md b/content/code-security/concepts/vulnerability-reporting-and-management/about-your-exposure-to-vulnerabilities-in-your-code-and-in-dependencies.md
@@ -1,7 +1,7 @@
 ---
 title: About exposure to vulnerabilities in your code and in dependencies
 shortTitle: Vulnerability exposure
-intro: 'Understanding your organization’s exposure to vulnerabilities in first-party code and in all dependencies is essential for enabling you to efficiently assess, prioritize, and remediate vulnerabilities, reducing the likelihood of security breaches.'
+intro: Understanding your organization’s exposure to vulnerabilities in first-party code and in all dependencies is essential for enabling you to efficiently assess, prioritize, and remediate vulnerabilities, reducing the likelihood of security breaches.
 allowTitleToDifferFromFilename: true
 product: '{% data reusables.gated-features.ghas-billing %}'
 versions:
@@ -14,6 +14,7 @@ topics:
   - Security
 redirect_from:
   - /code-security/securing-your-organization/understanding-your-organizations-exposure-to-vulnerabilites/about-your-exposure-to-vulnerable-dependencies
+  - /code-security/securing-your-organization/understanding-your-organizations-exposure-to-vulnerabilities/about-your-exposure-to-vulnerable-dependencies
 ---
 
 ## About exposure to vulnerable code
diff --git a/content/code-security/concepts/vulnerability-reporting-and-management/index.md b/content/code-security/concepts/vulnerability-reporting-and-management/index.md
@@ -0,0 +1,18 @@
+---
+title: Concepts for vulnerability reporting and management
+shortTitle: Vulnerability reporting
+intro: Learn core concepts relating to vulnerability reporting and management on {% data variables.product.github %}.
+versions:
+  fpt: '*'
+  ghec: '*'
+topics:
+  - Security advisories
+  - Vulnerabilities
+contentType: concepts
+children:
+  - /about-the-github-advisory-database
+  - /about-repository-security-advisories
+  - /about-global-security-advisories
+  - /about-coordinated-disclosure-of-security-vulnerabilities
+  - /about-your-exposure-to-vulnerabilities-in-your-code-and-in-dependencies
+---
diff --git a/content/code-security/dependabot/dependabot-alerts/index.md b/content/code-security/dependabot/dependabot-alerts/index.md
@@ -14,9 +14,9 @@ topics:
   - Repositories
   - Dependencies
 children:
-  - /about-dependabot-alerts
   - /configuring-dependabot-alerts
   - /viewing-and-updating-dependabot-alerts
   - /enable-delegated-alert-dismissal
   - /configuring-notifications-for-dependabot-alerts
 ---
+
diff --git a/content/code-security/dependabot/dependabot-auto-triage-rules/index.md b/content/code-security/dependabot/dependabot-auto-triage-rules/index.md
@@ -1,7 +1,7 @@
 ---
 title: Prioritizing Dependabot alerts with Dependabot auto-triage rules
 shortTitle: Dependabot auto-triage rules
-intro: 'You can use {% data variables.dependabot.auto_triage_rules %} to prioritize {% data variables.product.prodname_dependabot_alerts %}.'
+intro: You can use {% data variables.dependabot.auto_triage_rules %} to prioritize {% data variables.product.prodname_dependabot_alerts %}.
 allowTitleToDifferFromFilename: true
 versions:
   feature: dependabot-auto-triage-rules
@@ -12,10 +12,10 @@ topics:
   - Repositories
   - Dependencies
 children:
-  - /about-dependabot-auto-triage-rules
   - /using-github-preset-rules-to-prioritize-dependabot-alerts
   - /customizing-auto-triage-rules-to-prioritize-dependabot-alerts
   - /managing-automatically-dismissed-alerts
 redirect_from:
   - /code-security/dependabot/dependabot-alert-rules
 ---
+
diff --git a/content/code-security/dependabot/dependabot-security-updates/index.md b/content/code-security/dependabot/dependabot-security-updates/index.md
@@ -14,7 +14,7 @@ topics:
   - Pull requests
 shortTitle: Dependabot security updates
 children:
-  - /about-dependabot-security-updates
   - /configuring-dependabot-security-updates
   - /customizing-dependabot-security-prs
 ---
+
diff --git a/content/code-security/dependabot/dependabot-version-updates/index.md b/content/code-security/dependabot/dependabot-version-updates/index.md
@@ -1,6 +1,6 @@
 ---
 title: Keeping your dependencies updated automatically with Dependabot version updates
-intro: 'You can use {% data variables.product.prodname_dependabot %} to automatically keep the dependencies and packages used in your repository updated to the latest version, even when they don’t have any known vulnerabilities.'
+intro: You can use {% data variables.product.prodname_dependabot %} to automatically keep the dependencies and packages used in your repository updated to the latest version, even when they don’t have any known vulnerabilities.
 allowTitleToDifferFromFilename: true
 redirect_from:
   - /github/administering-a-repository/keeping-your-dependencies-updated-automatically
@@ -20,10 +20,10 @@ topics:
   - Dependencies
   - Pull requests
 children:
-  - /about-dependabot-version-updates
   - /configuring-dependabot-version-updates
   - /optimizing-pr-creation-version-updates
   - /customizing-dependabot-prs
   - /controlling-dependencies-updated
 shortTitle: Dependabot version updates
 ---
+
diff --git a/content/code-security/dependabot/maintain-dependencies/index.md b/content/code-security/dependabot/maintain-dependencies/index.md
diff --git a/content/code-security/dependabot/working-with-dependabot/index.md b/content/code-security/dependabot/working-with-dependabot/index.md
diff --git a/content/code-security/index.md b/content/code-security/index.md
diff --git a/content/code-security/securing-your-organization/understanding-your-organizations-exposure-to-vulnerabilities/index.md b/content/code-security/securing-your-organization/understanding-your-organizations-exposure-to-vulnerabilities/index.md
diff --git a/content/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/index.md b/content/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/index.md
diff --git a/content/code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/index.md b/content/code-security/security-advisories/working-with-global-security-advisories-from-the-github-advisory-database/index.md
diff --git a/content/code-security/security-advisories/working-with-repository-security-advisories/index.md b/content/code-security/security-advisories/working-with-repository-security-advisories/index.md
diff --git a/content/code-security/supply-chain-security/understanding-your-software-supply-chain/index.md b/content/code-security/supply-chain-security/understanding-your-software-supply-chain/index.md
diff --git a/data/learning-tracks/code-security.yml b/data/learning-tracks/code-security.yml
