Mirrors/xsshunter
2
0
Fork 0
mirror of https://github.com/trufflesecurity/xsshunter synced 2024-11-10 06:44:13 +00:00
Code Issues Projects Releases Packages Wiki Activity
xsshunter/.github/dependabot.yml
Dustin Decker 883039e6fa
fix validation, docker user, and only use dependabot for security upd… (#18) 
* fix validation, docker user, and only use dependabot for security updates

* vars
2023-01-29 12:40:54 -08:00

18 lines
769 B
YAML
Raw Blame History

# To get started with Dependabot version updates, you'll need to specify which
# package ecosystems to update and where the package manifests are located.
# Please see the documentation for all configuration options:
# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
version: 2
updates:
- package-ecosystem: "npm" # See documentation for possible values
directory: "/" # Location of package manifests
schedule:
interval: "weekly"
# Disable version updates for npm dependencies, only have security updates
open-pull-requests-limit: 0
- package-ecosystem: "github-actions"
directory: "/"
schedule:
# Check for updates to GitHub Actions every weekday
interval: "weekly"
Reference in a new issue View git blame Copy permalink