sartography/bpmn-js
1
0
Fork 0
mirror of https://github.com/sartography/bpmn-js.git synced 2025-02-23 22:28:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore: use dependabot for security updates only

Browse Source
This commit is contained in:
Maciej Barelkowski 2020-12-09 11:26:06 +01:00 committed by GitHub
parent 06a5ea76a9
commit f5566dbd27
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
.github/dependabot.yml vendored Normal file
View File

@ -0,0 +1,21 @@
# To get started with Dependabot version updates, you'll need to specify which
# package ecosystems to update and where the package manifests are located.
# Please see the documentation for all configuration options:
# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
version: 2
updates:
- package-ecosystem: "npm"
directory: "/"
schedule:
interval: "monthly"
day: "monday"
time: "09:00"
timezone: "Europe/Berlin"
reviewers: # Automatically assign reviewer
- "bpmn-io/modeling-dev"
commit-message:
prefix: "chore:"
versioning-strategy: "increase-if-necessary"
# Disable version updates unless they are for security reasons.
open-pull-requests-limit: 0