Browse Source

Add dependabot config for GA

Add dependabot config for GitHub Actions and check weekly
pull/367/head
Steel Wagstaff 2 years ago committed by GitHub
parent
commit
864cde4e32
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
  1. 16
      .github/dependabot.yml

16
.github/dependabot.yml

@ -4,9 +4,9 @@ updates:
- package-ecosystem: "npm" - package-ecosystem: "npm"
# Look for `package.json` and `package-lock.json` files in the root directory # Look for `package.json` and `package-lock.json` files in the root directory
directory: "/" directory: "/"
# Check for updates daily # Check for updates weekly
schedule: schedule:
interval: "daily" interval: "weekly"
allow: allow:
# Allow direct updates only (for packages named in package.json) # Allow direct updates only (for packages named in package.json)
- dependency-type: "direct" - dependency-type: "direct"
@ -17,11 +17,19 @@ updates:
- package-ecosystem: "composer" - package-ecosystem: "composer"
# Look for `composer.json` and `composer.lock` files in the root directory # Look for `composer.json` and `composer.lock` files in the root directory
directory: "/" directory: "/"
# Check for updates daily # Check for updates weekly
schedule: schedule:
interval: "daily" interval: "weekly"
allow: allow:
# Allow direct updates only (for packages named in composer.json) # Allow direct updates only (for packages named in composer.json)
- dependency-type: "direct" - dependency-type: "direct"
# Allow up to 10 open pull requests for composer dependencies # Allow up to 10 open pull requests for composer dependencies
open-pull-requests-limit: 10 open-pull-requests-limit: 10
- package-ecosystem: "github-actions"
directory: "/"
schedule:
interval: "weekly"
allow:
- dependency-type: "direct"
open-pull-requests-limit: 10

Loading…
Cancel
Save