Closed YooSunYoung closed 4 months ago
These actions were ignored by the dependabot becuase of this option:
ignore: # Optional: Official actions have moving tags like v1; # if you use those, you don't need updates. - dependency-name: "actions/*"
But it was weird that pre-commit was not updated either, and it seems like if it is not '/', you should provide full-path to the workflows...? It's not explicitly mentioned but it only mentions that it finds .github/workflows if the path is /. https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#directory
pre-commit
.github/workflows
/
So I also updated them manually but later dependabot should be able to pick it up.
These actions were ignored by the dependabot becuase of this option:
But it was weird that
pre-commitwas not updated either, and it seems like if it is not '/', you should provide full-path to the workflows...? It's not explicitly mentioned but it only mentions that it finds.github/workflowsif the path is/. https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#directorySo I also updated them manually but later dependabot should be able to pick it up.