AdrianDAlessandro
commented
4 days ago I am considering using Renovate instead of Dependabot. They have a pip-compile-specific dependency manager
Thoughts @cc-a ?
Open AdrianDAlessandro opened 1 week ago
AdrianDAlessandro
commented
4 days ago I am considering using Renovate instead of Dependabot. They have a pip-compile-specific dependency manager
Thoughts @cc-a ?
cc-a
commented
4 days ago Worth a go I think.
AdrianDAlessandro
commented
3 days ago Kind of fell at the first hurdle with this. I tried to configure the Renovate GitHub App for this repo and I wasn't able to get it to access the repo. I had to request access, and I thought that since I'm an admin for the repo, I would be able to grant the access, but I was not. Did you see anything @cc-a ?
There are currently 5 PRs attempting to update the requirements that are failing because
coldfronthas pinned requirements.We should prevent Dependabot from trying to update secondary dependancies like this. This is a general pain point with using Dependabot with pip-tools, so it'd be nice to work out how to configure that.