From 05abf7133376df5ba7a34b859bfaf76c526acce6 Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Thu, 29 Apr 2021 15:35:37 +0000 Subject: [PATCH] Upgrade to GitHub-native Dependabot --- .dependabot/config.yml | 26 -------------------------- .github/dependabot.yml | 26 ++++++++++++++++++++++++++ 2 files changed, 26 insertions(+), 26 deletions(-) delete mode 100644 .dependabot/config.yml create mode 100644 .github/dependabot.yml diff --git a/.dependabot/config.yml b/.dependabot/config.yml deleted file mode 100644 index edd0ba7..0000000 --- a/.dependabot/config.yml +++ /dev/null @@ -1,26 +0,0 @@ -version: 1 -update_configs: - - package_manager: "javascript" - directory: "/" - update_schedule: "daily" - automerged_updates: - - match: - dependency_type: "development" - # Supported dependency types: - # - "development" - # - "production" - # - "all" - update_type: "all" - # Supported updates to automerge: - # - "security:patch" - # SemVer patch update that fixes a known security vulnerability - # - "semver:patch" - # SemVer patch update, e.g. > 1.x && 1.0.1 to 1.0.3 - # - "semver:minor" - # SemVer minor update, e.g. > 1.x && 2.1.4 to 2.3.1 - # - "in_range" - # matching the version requirement in your package manifest - # - "all" - - match: - dependency_type: "production" - update_type: "semver:patch" diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..e0209f6 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,26 @@ +version: 2 +updates: +- package-ecosystem: npm + directory: "/" + schedule: + interval: daily + time: "04:00" + open-pull-requests-limit: 10 + ignore: + - dependency-name: flow-bin + versions: + - 0.143.1 + - 0.144.0 + - 0.145.0 + - 0.146.0 + - 0.147.0 + - 0.148.0 + - 0.149.0 + - dependency-name: eslint-config-prettier + versions: + - 8.0.0 + - 8.1.0 + - 8.2.0 + - dependency-name: eslint-config-standard + versions: + - 16.0.2