Closed poliorcetics closed 1 year ago
Maybe there is a way to tell dependabot to only update on breaking semver versions ?
We could add
updates:
ignore:
- update-types: ["version-update:semver-patch"]
To ignore all 0.0.x releases. That'd probably be good enough?
but then 2.x
would still be updated to2.x+1
yeah, there's no good solution that's going to cover every case (short of fixing https://github.com/renovatebot/renovate/issues/22820 and switching to renovate 😄 )
Honestly, I think the change proposed in this MR works well enough for now, so we can go with that, and if we ever need something more complicated later, we can figure out what to do then.
See https://github.com/HarfangLab/endpoint-sec/pull/7/files#r1280891213 for an instance of the problem