ntwb
commented
1 year ago From my experience Dependabot will create pull requests for all the dependancies including those resolution
But the Dependabot PR reverts any resolution dependancies, so after dependabot has created the pull request you need to check out that branch locally and then run rpm install commit and push to GitHub so that the resolution packages are installed again...
p.s. I came here looking for if this had been mentioned in the repo, I'm hoping to find a solution where dependabot PRs retain the resolution package versions so that I don't have to perform the above....
If I add a resolution for a dependency, will it get version updates from dependabot or will it stick to the same version specified in the resolution ?