search

oasisprotocol / oasis-core

Performant and Confidentiality-Preserving Smart Contracts + Blockchains
https://oasisprotocol.org
Apache License 2.0
338 stars 112 forks source link

.github/dependabot: disable updates for tests/upgrade #5668

Closed ptrus closed 6 months ago

ptrus commented 6 months ago

I believe this should make it so that oasis-core and tests/upgrade/post/ projects dependencies will be updated in same PR.

Using the new public beta feature: https://github.blog/changelog/2024-04-29-dependabot-multi-directory-configuration-public-beta-now-available/

netlify[bot] commented 6 months ago

Deploy Preview for oasisprotocol-oasis-core canceled.

Name Link
Latest commit 812856df4abd337b5735e221cac3a6e838683600
Latest deploy log https://app.netlify.com/sites/oasisprotocol-oasis-core/deploys/6630c080e96dc80008d0b9f2
peternose commented 6 months ago

We could also disable or delete tests/upgrade/post and tests/upgrade/post since this code is specific to Eden upgrade and we are not planing to have dump restore upgrades anymore.

ptrus commented 6 months ago

We could also disable or delete tests/upgrade/pre and tests/upgrade/post since this code is specific to Eden upgrade and we are not planing to have dump restore upgrades anymore.

Lets keep them for now, and try just disabling dependeabot for them. Feel free to remove in a separate PR.

For test/upgrade/pre and test/upgrade/post, we currently don't have dependabot configured. However dependabot still opens security updates, these can also be configured via dependabot.yml. I believe the added configuration should now prevent dependabot to open any updates for these projects. But i'm not 100% sure, lets try it out.