Notifications provide updates about the activities and conversations you're interested in. You can receive notifications on GitHub or through your email client.

The notifications you receive will either be participating notifications or watching notifications. Both types of notifications can be received as web notifications or email notifications. For more information, see "About web notifications" and "About email notifications."

Participating notifications are received when you're directly involved in activities or conversations within a repository. You'll receive a notification when:

  • You, or a team you're a member of, are mentioned. For more information, see "Basic writing and formatting syntax."
  • The parent team of a child team you're a member of is mentioned. For more information, see "About teams.".
  • You're assigned to an issue or pull request.
  • A comment is added in a conversation you're subscribed to.
  • A commit is made to a pull request you're subscribed to.
  • You open, comment on, or close an issue or pull request.
  • A review is submitted that approves or requests changes to a pull request you're subscribed to.
  • You, or a team you're a member of, are requested to review a pull request.
  • You, or a team you're a member of, are the designated owner of a file and someone opens a pull request that changes that file.

Watching notifications are received for updates in repositories that you're watching. You'll receive a notification when:

  • An issue is opened.
  • A comment is added to an open issue.
  • A pull request is opened.
  • A comment is added to an open pull request.
  • A comment is added to a commit.
  • A release is published. For more information, see "About releases."
  • A review is submitted that approves or requests changes to a pull request.

Security alerts for vulnerable dependencies

If your repository has a dependency manifest in Ruby or JavaScript (and if you've set up the dependency graph if it's a private repository), you can choose to receive security alerts when GitHub detects a vulnerable dependency in your repository. You can configure your security alerts as web notifications, email notifications, or alerts in the GitHub interface. For more information, see "About security alerts for vulnerable dependencies."

For more information about configuring your security alerts, see "Choosing the delivery method for your notifications."

Further reading