From df614fff266398d60ba289b733d1e89fa5e70d72 Mon Sep 17 00:00:00 2001 From: Pratik Raj Date: Thu, 10 Nov 2022 16:02:03 +0530 Subject: [PATCH 1/2] feat: dependabot workflow automation for updating dependency Signed-off-by: Pratik Raj --- .github/dependabot.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 000000000..d608a8244 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,13 @@ +version: 2 +updates: + # Dependencies listed in go.mod + - package-ecosystem: "gomod" + directory: "/" # Location of package manifests + schedule: + interval: "weekly" + + # Dependencies listed in .github/workflows/*.yml + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "weekly" From bef1064b8e7d68252e9c5a9a6c78d49f26bfdccc Mon Sep 17 00:00:00 2001 From: Pratik Raj Date: Sat, 12 Nov 2022 19:39:16 +0530 Subject: [PATCH 2/2] chore: ignore upgrade for 'bazil/fuse' and 'golang.org/x/oauth2' --- .github/dependabot.yml | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index d608a8244..2118a67c3 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -4,10 +4,13 @@ updates: - package-ecosystem: "gomod" directory: "/" # Location of package manifests schedule: - interval: "weekly" + interval: "monthly" + ignore: + - dependency-name: "bazil.org/fuse" + - dependency-name: "golang.org/x/oauth2" # Dependencies listed in .github/workflows/*.yml - package-ecosystem: "github-actions" directory: "/" schedule: - interval: "weekly" + interval: "monthly"