Skip to content

Commit

Permalink
[dependabot] disable for python and node
Browse files Browse the repository at this point in the history 
Why
===
* We don't use python and node for upm, we use Go
* We're getting reports we don't need to address on dependencies in
our test suite.
* It doesn't matter if there is an outdated or insecure dep in our
test suite, since we aren't even running python or node code

What changed
===
* Limit dependabot to 0 PRs in pip and npm ecosystems

Test plan
===
* Stop seeing dependabot PRs for node and python
  • Loading branch information
@ryantm
ryantm committed Sep 11, 2024
1 parent c7545a7 commit d0a9bf0
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/dependabot.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,11 +6,13 @@ updates:
package-ecosystem: "npm"
schedule:
interval: "monthly"
open-pull-requests-limit: 0
ignore:
- dependency-name: "*"
- directory: "/test-suite"
package-ecosystem: "pip"
schedule:
interval: "monthly"
open-pull-requests-limit: 0
ignore:
- dependency-name: "*"

0 comments on commit d0a9bf0

Please sign in to comment.