10BC0 Add dependabot by UlisesGascon · Pull Request #6029 · lodash/lodash · GitHub
[go: up one dir, main page]
Skip to content

Add dependabot #6029

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
UlisesGascon wants to merge 5 commits into from
Closed

Add dependabot #6029

UlisesGascon wants to merge 5 commits into from

Conversation

@UlisesGascon
Copy link
Member
@UlisesGascon UlisesGascon commented Oct 21, 2025

Main Changes

Adds a simple Dependabot configuration that runs monthly for GitHub Actions and npm dependencies, while avoiding semver-major updates for npm.

Assumptions

All our dependencies are dev only, so probably we can con with a longer time (quarterly?)

Context

Related to #6027

@UlisesGascon UlisesGascon mentioned this pull request Oct 21, 2025
Open
9 tasks
@jdalton
Copy link
Member
jdalton commented Oct 27, 2025

@UlisesGascon Thank you, can you add a 7 day cooldown to this config too.

@falsyvalues
Copy link
Member
falsyvalues commented Nov 4, 2025

I would like to suggest to increase that to 14 days, we can discuss on whys.

UlisesGascon
UlisesGascon commented Nov 4, 2025
View reviewed changes
UlisesGascon
UlisesGascon commented Nov 4, 2025
View reviewed changes
@ljharb
Copy link
Member
ljharb commented Nov 5, 2025

could we maybe use renovate instead of dependabot? it's a far superior tool :-)

@UlisesGascon
Copy link
Member Author
UlisesGascon commented Nov 5, 2025

I will prepare an alternative PR for Renovate 👍

@UlisesGascon UlisesGascon added the STA-2025 Issues and tasks related to the work funded by STA for Q4 2025. label Nov 7, 2025
@UlisesGascon UlisesGascon self-assigned this Nov 7, 2025
UlisesGascon added a commit to UlisesGascon/lodash that referenced this pull request Nov 7, 2025
@UlisesGascon
feat: add renovate setup
42f744d 
Alternative proposal for lodash#6029
UlisesGascon added a commit to UlisesGascon/lodash that referenced this pull request Nov 7, 2025
@UlisesGascon
feat: add renovate setup
e2452f4 
Alternative proposal for lodash#6029
@UlisesGascon UlisesGascon mentioned this pull request Nov 7, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@falsyvalues falsyvalues Awaiting requested review from falsyvalues

Assignees

@UlisesGascon UlisesGascon

Labels

STA-2025 Issues and tasks related to the work funded by STA for Q4 2025.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@UlisesGascon @jdalton @falsyvalues @ljharb
0