aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorper1234 <accounts@perglass.com>2021-05-26 03:56:05 -0700
committerper1234 <accounts@perglass.com>2021-05-26 03:56:05 -0700
commitde717ce81dc21009ae6ed4870908b4b5a5c616e2 (patch)
treefef3b349998c4c0145e5b3d1fd12e62326e8c774
parentec2b495c090e0bf0107f2fea2bb83ba591e9dd78 (diff)
Configure Dependabot to check for outdated actions used in workflows
Dependabot will periodically check the versions of all actions used in the repository's workflows. If any are found to be outdated, it will submit a pull request to update them. NOTE: Dependabot's PRs will sometimes try to pin to the patch version of the action (e.g., updating `uses: foo/bar@v1` to `uses: foo/bar@v2.3.4`). When the action author has provided a major version ref, use that instead (e.g., `uses: foo/bar@v2`). Dependabot will automatically close its PR once the workflow has been updated. More information: https://docs.github.com/en/github/administering-a-repository/keeping-your-actions-up-to-date-with-dependabot
-rw-r--r--.github/dependabot.yml10
1 files changed, 10 insertions, 0 deletions
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..03600dd
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,10 @@
+# See: https://docs.github.com/en/github/administering-a-repository/configuration-options-for-dependency-updates#about-the-dependabotyml-file
+version: 2
+
+updates:
+ # Configure check for outdated GitHub Actions actions in workflows.
+ # See: https://docs.github.com/en/github/administering-a-repository/keeping-your-actions-up-to-date-with-dependabot
+ - package-ecosystem: github-actions
+ directory: / # Check the repository's workflows under /.github/workflows/
+ schedule:
+ interval: daily