-
**Describe the bug**
I am managing NuGet packages, specifically SumNumbers, in Azure Artifacts and have configured the following dependabot.yml file for version updates. The pipeline triggers using D…
-
**Description:**
As a regulated entity we want to ensure that the actions we reuse are using up to date dependencies.
**Justification:**
Add the required dependabot configuration to manage build …
-
Enable dependabot in the security section of this repo. https://github.com/Project-MONAI/MONAILabel/settings/security_analysis
cc: @SachidanandAlle
With these settings turned on (see image below)…
-
Artifact actions v3 will be deprecated by December 5, 2024. We currently have GitHub Actions workflows using v3 of actions/upload-artifact or actions/download-artifact. After this date using v3 of the…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Package ecosystem
npm/pnpm
### Package manager version
8.15.9
### Language version
_No respo…
-
### Description
More details here https://github.com/kumahq/kuma-gui/pull/2918
The above PR was work towards this issue (mainly testing out "only do something on dependabot PRs" functionality) but…
-
### Contributing guidelines
- [x] I've read the [contributing guidelines](https://github.com/docker/bake-action/blob/master/.github/CONTRIBUTING.md) and wholeheartedly agree
### I've found a bug, an…
-
Does it make sense to disable dependabot?
I guess the defining question is: Is any of the code in this repo used in production?
-
### Description
Create a workflow to copy [all/some] repository secrets to `DependaBot` secrets.
The command should be the following:
- `@gstraccini copy secret dependabot secret-name` (by n…
-
### Feature
As a user of [remote plugins](https://buf.build/plugins), I would like to have a way to list and update the one I am using. Kind of similar to dependabot and renovate workflows. I suppose…