From d317d8a6c7373872d31348b95e0a1ab773d5bb2d Mon Sep 17 00:00:00 2001 From: Pedro Pombeiro Date: Mon, 14 Oct 2019 18:41:05 +0200 Subject: [PATCH] Filter for security updates only in Dependabot MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Jakub SokoĊ‚owski --- .dependabot/config.yml | 10 ++++++++++ 1 file changed, 10 insertions(+) mode change 100644 => 100755 .dependabot/config.yml diff --git a/.dependabot/config.yml b/.dependabot/config.yml old mode 100644 new mode 100755 index 3c6e5e1b79..342004e7f2 --- a/.dependabot/config.yml +++ b/.dependabot/config.yml @@ -15,12 +15,22 @@ update_configs: - package_manager: "javascript" directory: "/mobile/js_files" update_schedule: "weekly" + allowed_updates: + - match: + update_type: security default_reviewers: - "jakubgs" # Keep /desktop/js_files/yarn.lock up to date, batching pull requests weekly - package_manager: "javascript" directory: "/desktop/js_files" update_schedule: "weekly" + allowed_updates: + - match: + update_type: all + dependency_type: direct + - match: + update_type: security + dependency_type: indirect default_reviewers: - "vkjr" - "jakubgs"