chore(ci): bump deps versions

ayamir / nvimdots

A well configured and structured Neovim.

BSD 3-Clause "New" or "Revised" License

2.83k stars 451 forks source link

Closed Cyberczy closed 4 months ago

Cyberczy commented 4 months ago

Happy lunar new year 🎉

Cyberczy commented 4 months ago

Perhaps we should use dependabot to update deps versions. This way we can avoid forgetting to update these deps versions. see https://docs.github.com/en/code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates How do you think? @ayamir

CharlesChiuGit commented 4 months ago

i dont think using a dependabot is a good idea. we might have supply chain attack issue. it's very own security news.