Thanks a lot for creating this app, as it seems to solve our issues with Dependabot in https://github.com/cert-manager! ❤️
We are now using a self-hosted Renovate setup to ensure automation in our dependency upgrades, and this wouldn't be possible without Octo STS.

We want to enable vulnerability alerts in our Renovate setup, and as you can read from the docs, it will require granting Renovate read access to "Dependabot alerts". And according to https://github.com/octo-sts/app/blob/3b34e02d9873acd86406d47341635ef5b898b149/README.md#octo-sts-github-permissions, this permission is not granted to the Octo STS app.

Could you add this permission to the App in your next revision?