issues
search
advanced-security
/
spdx-dependency-submission-action
MIT License
11
stars
3
forks
source link
feat: Update dependabot.yml
#27
Closed
GeekMasher
closed
2 months ago
GeekMasher
commented
2 months ago
Here are the key changes:
.github/dependabot.yml
:
Changed the update frequency for both GitHub Actions and npm dependencies from daily to weekly.
Added three reviewers: "advanced-security/oss-maintainers", "lseppala", and "courtneycl".
Specified "main" as the target branch for updates.
Customized commit messages with prefixes "deps" for regular updates and "chore" for development updates.
Added a label "Dependencies" to the updates.
Grouped dependencies into "production-dependencies" and "development-dependencies".
Here are the key changes:
.github/dependabot.yml: