Closed kaklakariada closed 7 months ago
I don't know if you kept this in mind, but another nice thing would be to manually be able to batch update projects' multiple dependencies when we release something, eg in case of virtual-schema-common-jdbc being updated .. I'm not sure if that's out of scope or not.
Review effort .2
Effort: ~8pd
Goal
Speedup process for fixing vulnerabilities in third party dependencies.
Implementation
When the
dependencies_check.yml
workflow finds new vulnerabilities in dependencies it will trigger another GitHub workflow. This new workflow will upgrade all dependencies to their latest versions.Input
We add a new
update-dependencies
mode to PK that gets an optional parameter. This parameter describes:Process
main
branch is checked out currentlyOpen questions
Delimitations / out-of-scope
pom.xml
in project root folder)release.yml
andci-build.yml
wokflows: https://github.com/exasol/project-keeper/issues/517release.yml
andci-build.yml
: https://github.com/exasol/project-keeper/issues/519pk fix