Skip to content

Enable Dependabot #67

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
helen merged 3 commits into from
Aug 7, 2025
Merged

Enable Dependabot #67

helen merged 3 commits into from
Aug 7, 2025

Conversation

@zkoppert
Copy link
Member

@zkoppert zkoppert commented Aug 7, 2025

Dependabot could be enabled for this repository. Please enable it by merging this pull request so that we can keep our dependencies up to date and secure.

@zkoppert zkoppert requested a review from a team as a code owner August 7, 2025 19:57
Copilot AI reviewed Aug 7, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR enables Dependabot for the repository to automate dependency management and security updates. It introduces a configuration file that will monitor both npm packages and GitHub Actions for outdated dependencies.

  • Adds Dependabot configuration to monitor npm packages and GitHub Actions
  • Sets up weekly update intervals for both package ecosystems

helen
helen requested changes Aug 7, 2025
View reviewed changes
Copy link
Member

@helen helen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's try grouped updates in this repo? And if we like it we can do the same in some other repos later.

helen and others added 2 commits August 7, 2025 17:08
@helen
Grouped updates for Dependabot
045fba4
@zkoppert
move tabs/spaces to make schema happy
588905a 
Updated commit message configuration for npm and GitHub Actions.
@helen helen merged commit dec72a4 into main Aug 7, 2025
5 checks passed
@zkoppert zkoppert deleted the dependabot-210bfb67-0312-4cbb-97fe-d51e658f7905 branch August 7, 2025 21:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@helen helen helen approved these changes

@accessibility-bot accessibility-bot Awaiting requested review from accessibility-bot accessibility-bot is a code owner automatically assigned from github/accessibility-reviewers

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@zkoppert @helen