mirror of
https://github.com/firefly-iii/firefly-iii.git
synced 2024-11-30 12:43:57 -06:00
093794f7a5
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure. Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>
29 lines
619 B
YAML
29 lines
619 B
YAML
version: 2
|
|
updates:
|
|
|
|
# composer updates
|
|
- package-ecosystem: "composer"
|
|
directory: "/" # Location of package manifests
|
|
target-branch: develop
|
|
labels: ["bug"]
|
|
versioning-strategy: increase
|
|
schedule:
|
|
interval: "weekly"
|
|
|
|
# yarn / JS updates
|
|
- package-ecosystem: "npm"
|
|
directory: "/"
|
|
target-branch: develop
|
|
labels: ["bug"]
|
|
versioning-strategy: increase
|
|
schedule:
|
|
interval: "weekly"
|
|
|
|
- package-ecosystem: "github-actions"
|
|
directory: "/"
|
|
target-branch: develop
|
|
labels: ["bug"]
|
|
versioning-strategy: increase
|
|
schedule:
|
|
interval: "weekly"
|