GitHub Dependabot

GitHub Dependabot is a Security input connector. Connect to your GitHub organization to start collecting vulnerability data from Dependabot.

IP Allowlists

You might need to add the Monad IP range of to your GitHub Dependabot allowlist, so Monad can connect to it.


To set up a GitHub Dependabot connector, you will need to authenticate with a personal access token, a repository name and the owner of the repository (GitHub user name or organization name).

Set up a GitHub Dependabot connector

  1. From your Monad account go to the Connector map, and click Add connector.

  2. Select the GitHub Dependabot connector.

  3. Optionally, change the default name for the connector. This name serves as a label for the connector in the Monad app, and you can change it later.

  4. (Optional) - set your connector schedule

  5. Click Connect.

  6. You will be directed to Github to Authorise the Monad application to have access to the repository(ies) you wish to scan.

That’s it! Monad tests the connection to GitHub, and if successful, begins syncing data from GitHub into your Monad account.

This page was last modified: 9 Oct 2023