Closed damianhxy closed 5 months ago
Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?
Description
Create dependabot.yml to automatically check for updated github actions
Motivation and Context
Currently, the codeql workflow is using outdated github actions (ref: https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/)![Screenshot 2024-02-05 at 02 05 37](https://github.com/autolab/Autolab/assets/9074856/630fe380-dea3-4f5c-b2be-301672ad96d1)
Going forward, it is best to use dependabot to automatically update the actions. We can also consider using dependabot to automatically update gems.
How Has This Been Tested?
N/A, followed example from https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot#example-dependabotyml-file-for-github-actions
Types of changes
Checklist:
overcommit --install && overcommit --sign
to use pre-commit hook for linting