Closed dependabot[bot] closed 7 months ago
Settings->Actions->General->Allow GitHub Actions to create and approve pull requests needs to be enabled in repository settings (not required if a custom token is used)
I suggest we merge this PR and then confirm the above comment by starting a signing event we don't intend to actually sign: I just want to see if the PR opening works with custom token without this setting enabled)
I suggest we merge this PR and then confirm the above comment by starting a signing event we don't intend to actually sign: I just want to see if the PR opening works with custom token without this setting enabled)
Agreed.
Bumps theupdateframework/tuf-on-ci from 0.5.0 to 0.6.0.
Release notes
Sourced from theupdateframework/tuf-on-ci's releases.
Changelog
Sourced from theupdateframework/tuf-on-ci's changelog.
... (truncated)
Commits
38e31ce
Merge pull request #191 from jku/release-v0.6.0559a41f
Release version bump for 0.6.04873e28
Merge pull request #190 from jku/probe-pkcs-modulea30ae35
Merge pull request #189 from jku/improve-pr-docs65e049f
signer: Try to guess where libykcs11 could bea894bf5
docs: clarify the security settings19b7a4f
Update docs on PR permissionsae7c084
Merge pull request #186 from jku/use-prsa5b256b
signing event: Address review comments967574f
docs: Update changelogDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show