Dependabot configuration for security updates

AplinkosMinisterija · Jan 30, 2024 · 6382bc0 · 6382bc0
1 parent 0d7d1be
commit 6382bc0
Showing 1 changed file with 24 additions and 0 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,24 @@
+version: 2
+updates:
+  # Maintain dependencies for npm
+  - package-ecosystem: npm
+    directory: /
+    # Disable version updates for npm dependencies
+    # This option has no impact on security updates, which have a separate, internal limit of ten open pull requests.
+    open-pull-requests-limit: 0
+    schedule:
+      interval: daily
+
+  # Maintain dependencies for GitHub actions
+  - package-ecosystem: github-actions
+    directory: /
+    open-pull-requests-limit: 0
+    schedule:
+      interval: daily
+
+  # Maintain dependencies for Docker
+  - package-ecosystem: docker
+    directory: /
+    open-pull-requests-limit: 0
+    schedule:
+      interval: daily