Skip to content

fix: definitive dependabot configuration repair#161

Closed
tf-seti wants to merge 1 commit into
mainfrom
appsec/dependabot-repair-v2
Closed

fix: definitive dependabot configuration repair#161
tf-seti wants to merge 1 commit into
mainfrom
appsec/dependabot-repair-v2

Conversation

@tf-seti

@tf-seti tf-seti commented Apr 29, 2026

Copy link
Copy Markdown
Contributor

Dependabot Configuration Repair

This automated PR fixes schema errors in dependabot.yml to ensure compatibility with GitHub's current requirements.

Fixes

  • Cooldown: Fixed nested structure to use official default-days and exclude keys.
  • Structure: Converted plural directories to singular directory.
  • Safety: Locked semantic-release to < 25.0.0 to prevent Node engine compatibility issues.

Automated by Application Security · repair-v2

Created by Sourcegraph batch change david.salvador/dependabot-schema-repair-v2.

@tf-seti tf-seti requested a review from a team as a code owner April 29, 2026 09:01
@pr-auditor

pr-auditor Bot commented Apr 29, 2026

Copy link
Copy Markdown

✅ Security Analysis Results

Great news! No security issues found in this pull request.

Analysis Summary:

  • 📁 Files reviewed: 1
  • ✅ No security vulnerabilities detected

Security analysis powered by Claude Sonnet 4.6 via pr-auditor | Questions? Contact #dx-team or check out this page

@gitstream-cm

gitstream-cm Bot commented Apr 29, 2026

Copy link
Copy Markdown

🥷 Code experts: robespmun

robespmun has most 🧠 knowledge in the files.

See details

.github/dependabot.yml

Knowledge based on git-blame:
robespmun: 15%

✨ Comment /gs review for LinearB AI review. Learn how to automate it here.

@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants