Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add scheduled uv lock -U to replace dependabot #945

Merged
merged 1 commit into from
Oct 20, 2024
Merged

Add scheduled uv lock -U to replace dependabot #945

merged 1 commit into from
Oct 20, 2024

Conversation

ml-evs
Copy link
Member

@ml-evs ml-evs commented Oct 20, 2024

dependabot is not being very useful right now. Instead, I propose a simple wf that runs uv lock -U each week and makes a PR with any changes, similar to a grouped dependabot update PR that should always lead to latest compatible versions.

We could then adapt this in the future with updates for newer (potentially breaking) versions of other deps.

If this works, we can disable dependabot for Python for all but security updates (which I don't believe uv has explicit support for), and leave it on only for npm.

@ml-evs ml-evs added the build For issues/PRs pertaining to the build or deployment of the package label Oct 20, 2024
@ml-evs ml-evs force-pushed the ml-evs/dependable-bot branch from b664bcb to 906d180 Compare October 20, 2024 14:19
@codecov Codecov
Copy link

codecov bot commented Oct 20, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 68.38%. Comparing base (96ac6a9) to head (906d180).
Report is 1 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main     #945   +/-   ##
=======================================
  Coverage   68.38%   68.38%           
=======================================
  Files          62       62           
  Lines        3928     3928           
=======================================
  Hits         2686     2686           
  Misses       1242     1242

@cypress Cypress
Copy link

cypress bot commented Oct 20, 2024

datalab    Run #2597

Run Properties:  status check passed Passed #2597  •  git commit 953f1b7aa6 ℹ️: Merge 906d180b111646de5c2799456f491c1150e39c07 into 96ac6a957a518c7ec95e5045a2e0...
Project datalab
Run status status check passed Passed #2597
Run duration 06m 18s
Commit git commit 953f1b7aa6 ℹ️: Merge 906d180b111646de5c2799456f491c1150e39c07 into 96ac6a957a518c7ec95e5045a2e0...
Committer Matthew Evans
View all properties for this run ↗︎
Test results
Tests that failed  Failures 0
Tests that were flaky  Flaky 0
Tests that did not run due to a developer annotating a test with .skip  Pending 0
Tests that did not run due to a failure in a mocha hook  Skipped 0
Tests that passed  Passing 396

@ml-evs
Copy link
Member Author

ml-evs commented Oct 20, 2024

Merging just to test it out

@ml-evs ml-evs marked this pull request as ready for review October 20, 2024 16:11
@ml-evs ml-evs merged commit 15e51d4 into main Oct 20, 2024
17 checks passed
@ml-evs ml-evs deleted the ml-evs/dependable-bot branch October 20, 2024 16:11
This was referenced Oct 22, 2024
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jdbocarsly jdbocarsly Awaiting requested review from jdbocarsly jdbocarsly is a code owner

@BenjaminCharmes BenjaminCharmes Awaiting requested review from BenjaminCharmes BenjaminCharmes is a code owner

Assignees
No one assigned
Labels
build For issues/PRs pertaining to the build or deployment of the package
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ml-evs