Skip to content
You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
play

GitHub Action

validate-dependabot

v2.0.0

validate-dependabot

play

validate-dependabot

validate dependabot yaml

Installation

Copy and paste the following snippet into your .yml file.

 
              
- name: validate-dependabot

              
  uses: marocchino/[email protected]
Learn more about this action in marocchino/validate-dependabot

Choose a version

typescript-action status

Why?

If you get a validation error when editing your config, you won't know if there's a problem until the next dependabot runs. Even if the cycle is long and the alarm is not set, it may be detected much later. This library allows you to find problems in the PR stage.

Usage

name: dependabot validate

on:
  pull_request:
    paths:
      - '.github/dependabot.yml'
      - '.github/workflows/dependabot-validate.yml'
jobs:
  validate:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - uses: marocchino/validate-dependabot@v2
        id: validate
      - uses: marocchino/sticky-pull-request-comment@v2
        if: always()
        with:
          header: validate-dependabot
          message: ${{ steps.validate.outputs.markdown }}

Inputs

path

Required path of config file. Default ".github/dependabot.yml".

success_message

Required display on success. Default "✅dependabot config looks good 👍".

failure_message

Required display on failure. Default "🚫 dependabot errors".

Outputs

raw

response body as json string

markdown

errors as markdown table

Any problem?

Feel free to report issues. 😃