Skip to content

Commit 0cc4bde

Browse files
authored
.github/dependabot.yml: introduce scanning for obsolete GHA versions
Signed-off-by: Jim Klimov <jimklimov+nut@gmail.com>
1 parent 89744f7 commit 0cc4bde

1 file changed

Lines changed: 12 additions & 0 deletions

File tree

.github/dependabot.yml

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
# To get started with Dependabot version updates, you'll need to specify which
2+
# package ecosystems to update and where the package manifests are located.
3+
# Please see the documentation for all configuration options:
4+
# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
5+
# https://docs.github.com/en/code-security/how-tos/secure-your-supply-chain/secure-your-dependencies/keeping-your-actions-up-to-date-with-dependabot
6+
7+
version: 2
8+
updates:
9+
- package-ecosystem: "github-actions" # See documentation for possible values
10+
directory: "/" # Location of package manifests
11+
schedule:
12+
interval: "weekly"

0 commit comments

Comments
 (0)