From c888ce0ac63ed0572b1e17224784c9ad21fdc50a Mon Sep 17 00:00:00 2001 From: per1234 Date: Sun, 26 Mar 2023 04:31:32 -0700 Subject: [PATCH 1/2] Configure Dependabot to check for outdated Python dependencies Dependabot will periodically check all Python dependencies of the project. If any are found to be outdated, it will submit a pull request to update them. --- .github/dependabot.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index f2bfa72..a678970 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -11,3 +11,10 @@ updates: interval: daily labels: - "topic: infrastructure" + + - package-ecosystem: pip + directory: reportsizedeltas/tests + schedule: + interval: daily + labels: + - "topic: infrastructure" From 7fae193a8f1c6f20087ca5af896ea12088708120 Mon Sep 17 00:00:00 2001 From: per1234 Date: Sun, 26 Mar 2023 04:32:07 -0700 Subject: [PATCH 2/2] Assign per1234 to all Dependabot PRs As primary maintainer of the project, GitHub user per1234 is responsible for managing Dependabot pull requests. Configuring Dependabot to automatically set the assignment will be more convenient. --- .github/dependabot.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/dependabot.yml b/.github/dependabot.yml index a678970..3ba346a 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -6,6 +6,8 @@ updates: # Source: https://github.com/arduino/tooling-project-assets/blob/main/workflow-templates/assets/dependabot/README.md # See: https://docs.github.com/en/code-security/supply-chain-security/keeping-your-actions-up-to-date-with-dependabot - package-ecosystem: github-actions + assignees: + - per1234 directory: / # Check the repository's workflows under /.github/workflows/ schedule: interval: daily @@ -13,6 +15,8 @@ updates: - "topic: infrastructure" - package-ecosystem: pip + assignees: + - per1234 directory: reportsizedeltas/tests schedule: interval: daily