search

OCamlPro / gnucobol

A clone of the sourceforge GnuCOBOL compiler from COBOL to C.
https://get-superbol.com
GNU Lesser General Public License v3.0
22 stars 24 forks source link

Keep GitHub Actions up to date with GitHub's Dependabot #195

Closed cclauss closed 1 month ago

cclauss commented 1 month ago

Fixes software supply chain safety warnings like at the bottom right of https://github.com/OCamlPro/gnucobol/actions/runs/11480929540

GitMensch commented 1 month ago

conceptional looks good to me

questions:

  1. Which branches are monitored / PRs created for (I guess the configured main branch)?
  2. How do dependabot PRs look like? I guess that you may be able to trigger that workflow as soon as you change the main branch in your GH project settings to patch-1 or push that to your current one.
cclauss commented 1 month ago

Dependabot monitors the default branch of the repo and PRs look like:

GitMensch commented 1 month ago

please adjust the default branch of your fork, this way we'll see one of the resulting PRs in your repo

cclauss commented 1 month ago

https://github.com/cclauss/gnucobol/blob/gcos4gnucobol-3.x/.github/dependabot.yml

cclauss commented 1 month ago

https://github.com/cclauss/gnucobol/actions/runs/11503260118