chore: Prevent dependabot from upgrading broken dep (#426)

Prevent dependabot from upgrading broken dep v0.2.0 has an open bug: zalando/go-keyring#80 And this dependency has been upgraded and then downgraded twice now. I propose that we just ignore the dependency completely until there's a known fix.
chanzuckerberg · Oct 12, 2022 · 72a83cc · 72a83cc
1 parent eecf02a
commit 72a83cc
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -4,3 +4,8 @@ updates:
   directory: "/"
   schedule:
     interval: daily
+  ignore:
+      # See:
+      # https://github.com/chanzuckerberg/aws-oidc/pull/362
+      # https://github.com/chanzuckerberg/aws-oidc/pull/422
+      - dependency-name: "github.com/zalando/go-keyring"