Skip to content

Commit 1ab36d6

Browse files
committed
Harden GitHub Actions via zizmor
1 parent 4928f56 commit 1ab36d6

1 file changed

Lines changed: 10 additions & 1 deletion

File tree

.github/dependabot.yml

Lines changed: 10 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,10 +1,19 @@
11
version: 2
22
updates:
3-
- package-ecosystem: composer
3+
- package-ecosystem: npm
44
directory: '/'
55
schedule:
66
interval: monthly
7+
cooldown:
8+
default-days: 7
79
open-pull-requests-limit: 10
810
ignore:
911
- dependency-name: '*'
1012
update-types: ['version-update:semver-patch', 'version-update:semver-minor']
13+
- dependency-name: '@types/*'
14+
update-types:
15+
[
16+
'version-update:semver-patch',
17+
'version-update:semver-minor',
18+
'version-update:semver-major',
19+
]

0 commit comments

Comments
 (0)