Add release note for Dependabot directories key (#52548)

github · Oct 7, 2024 · 9d5df4e · 9d5df4e
1 parent 31849c7
commit 9d5df4e
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/data/release-notes/enterprise-server/3-14/0.yml b/data/release-notes/enterprise-server/3-14/0.yml
@@ -106,6 +106,9 @@ sections:
         # https://github.com/github/releases/issues/3850
         - |
           Dependabot uses private registry configurations specified in the `dependabot.yml` file as expected, even if there is a configuration with `target-branch`. This ensures that security updates are applied correctly, regardless of your repository's configuration settings. See "[AUTOTITLE](/code-security/dependabot/working-with-dependabot/configuring-access-to-private-registries-for-dependabot)."
+        # https://github.com/github/releases/issues/4118
+        - |
+          In the `dependabot.yml` file, users can apply the same configuration to manifest files from multiple directories using the `directories` key. Direct strings, glob syntax, and wildcards (`*`) are all supported for targeting directories. See "[AUTOTITLE](/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#directories)." [Updated: 2024-10-07]
 
     - heading: Code security
       notes:
@@ -225,4 +228,6 @@ sections:
   errata:
     - |
       These release notes previously indicated as a known issue that on GitHub Enterprise Server 3.14.0 when log forwarding is enabled, some forwarded log entries may be duplicated.
-      The fix for this problem was already included prior to the release of GitHub Enterprise Server 3.14.0. [Updated: 2024-09-16]
+      The fix for this problem was already included prior to the release of GitHub Enterprise Server 3.14.0. [Updated: 2024-09-16]
+    - |
+      These release notes did not include a note for support of the `directories` key in `dependabot.yml` files. [Updated: 2024-10-07]