Skip to content

ci: enable Dependabot updates for shared actions #29

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ovflowd merged 2 commits into from
Jul 26, 2025
Merged

ci: enable Dependabot updates for shared actions #29

ovflowd merged 2 commits into from
Jul 26, 2025

Conversation

@MattIPv4
Copy link
Member

@MattIPv4 MattIPv4 commented Jul 25, 2025
edited
Loading

cc @nodejs/web-infra

https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#directories-or-directory--

Dependabot looks in ./.github/workflows/*.y(a)ml, as well as ./action.y(a)ml for each directory provided in the config.

Copilot AI review requested due to automatic review settings July 25, 2025 17:59
@MattIPv4 MattIPv4 requested a review from a team as a code owner July 25, 2025 17:59
Copilot AI reviewed Jul 25, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR enables Dependabot to manage updates for GitHub Actions in shared action directories. It configures Dependabot to monitor both the root directory and the actions/* subdirectories for GitHub Actions dependencies.

  • Updated Dependabot configuration to include shared action directories
  • Added version comment to existing Slack notification action for better tracking

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

File Description
.github/dependabot.yml Modified to monitor GitHub Actions in both root and actions subdirectories
actions/notify-on-push/action.yml Added version comment to Slack notification action

bmuenzenmeyer
bmuenzenmeyer approved these changes Jul 25, 2025
View reviewed changes
Copy link
Contributor

@bmuenzenmeyer bmuenzenmeyer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am surprised it is not recursive by default

@ovflowd ovflowd added this pull request to the merge queue Jul 26, 2025
Merged via the queue into nodejs:main with commit 69f2aa8 Jul 26, 2025
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@bmuenzenmeyer bmuenzenmeyer bmuenzenmeyer approved these changes

+3 more reviewers

@avivkeller avivkeller avivkeller approved these changes

@flakey5 flakey5 flakey5 approved these changes

@AugustinMauroy AugustinMauroy AugustinMauroy approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@MattIPv4 @bmuenzenmeyer @avivkeller @flakey5 @AugustinMauroy @ovflowd