Dependabot is used to send alerts when the repository is using a software dependency with a known vulnerability.