Closed dependabot[bot] closed 7 months ago
Just a note, unless the version was explicitly set to a minimum semver version, they really should keep the lower bound since they will resolve to the newer semver compatible version available at install.
I don't really agree with this kind of update policy by the bot, which I assume can be configured to only send meaningful dep bumps? 🤷♂️
Hm, now that you mention it... yes, I agree. There should be a configuration option on the bot, I guess... care to investigate?
care to investigate?
I would if I could spare the time 🤣
I would rather prioritize my contributions here to wrap up my existing PRs so they don't go to waste :)
Don't worry about it much, this is just a nice to have improvement.
Okay, I'll merge then. We can always revert patches if we decide to go the other way.
Bumps toml from 0.8.3 to 0.8.9.
Commits
f5c6f4b
chore: Release24e599e
docs: Update changelogd00d616
Merge pull request #670 from epage/span7e23971
fix(serde): Improve spans for empty tablesd5423f6
test(serde): Show bad span9db97b3
Merge pull request #668 from JustusAdam/patch-15381d7b
docs: Describe Table order based on concepts106d51f
test: Update compliance suite062e058
Merge pull request #665 from toml-rs/renovate/actions-setup-python-5.x0da2b51
Merge pull request #666 from toml-rs/renovate/github-codeql-action-3.xDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show