Skip to content

Dependabot tweaks#741

Open
wikkyk wants to merge 2 commits intomainfrom
dependabot/onsi
Open

Dependabot tweaks#741
wikkyk wants to merge 2 commits intomainfrom
dependabot/onsi

Conversation

@wikkyk
Copy link
Copy Markdown
Collaborator

@wikkyk wikkyk commented May 5, 2026
edited
Loading

Issue #, if available:
fixes #713

Description of changes:
Adds a 5-day cooldown to dependabot. We can bikeshed the exact number.

Also creates a group for onsi projects because those tend to be released together and should be updated together. Reduces spam like #738 #739

Testing performed:
linters

Copilot AI review requested due to automatic review settings May 5, 2026 07:50
@wikkyk wikkyk added e2e/none skip all e2e tests (documentation etc) - overrides all e2e/* labels github Updates GitHub config (actions, dependabot, ...) labels May 5, 2026
Copilot AI reviewed May 5, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the repository’s Dependabot configuration to reduce PR noise by throttling update frequency and grouping related Go dependency bumps.

Changes:

  • Added a Dependabot cooldown of 5 days for the gomod ecosystem updates.
  • Introduced an onsi dependency group to bundle ginkgo/gomega updates into a single PR when possible.

@wikkyk wikkyk added dependencies Pull requests that update a dependency file security Vulnerability or security-related labels May 5, 2026
@wikkyk wikkyk force-pushed the dependabot/onsi branch from cc682fe to 48169c0 Compare May 5, 2026 07:53
Copilot AI review requested due to automatic review settings May 5, 2026 08:06
@wikkyk wikkyk force-pushed the dependabot/onsi branch from 48169c0 to d316ccd Compare May 5, 2026 08:06
Copilot AI reviewed May 5, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 1 comment.

Comment thread .github/dependabot.yml
Comment on lines 7 to +9
interval: "daily"
cooldown:
default-days: 5
Copy link
Copy Markdown
Collaborator Author

@wikkyk wikkyk May 5, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We will most likely remove the docker ecosystem anyway, so I didn't bother.

@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented May 5, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

wikkyk added 2 commits May 5, 2026 11:19
@wikkyk
dependabot: add onsi group
f7ccf87 
ginkgo and gomega tend to be released together and should be updated together
@wikkyk
dependabot: add 5 day cooldown
6ed59f6
@wikkyk wikkyk force-pushed the dependabot/onsi branch from d316ccd to 6ed59f6 Compare May 5, 2026 09:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@65278 65278 Awaiting requested review from 65278 65278 is a code owner

@pborn-ionos pborn-ionos Awaiting requested review from pborn-ionos pborn-ionos is a code owner

@mcbenjemaa mcbenjemaa Awaiting requested review from mcbenjemaa mcbenjemaa is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file e2e/none skip all e2e tests (documentation etc) - overrides all e2e/* labels github Updates GitHub config (actions, dependabot, ...) security Vulnerability or security-related

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

dependabot: add cooldown

2 participants

@wikkyk