add dependabot yml file to automate dependency version bumps

NVIDIA / kubevirt-gpu-device-plugin

NVIDIA k8s device plugin for Kubevirt

BSD 3-Clause "New" or "Revised" License

233 stars 67 forks source link

add dependabot yml file to automate dependency version bumps #111

Closed tariq1890 closed 1 month ago

rthallisey commented 4 months ago

@tariq1890, I'm not familiar with dependabot. Looking at the docs, I guess it open PRs to fix vulnerabilities automatically?

tariq1890 commented 4 months ago

@rthallisey Dependabot raises PRs to bump versions of dependencies. So when a new docker image or version of a library is released, dependabot automatically creates PRs

rthallisey commented 1 month ago

Ok let's try it out. Lgtm