Skip to content

Commit

Permalink
Add dependabot configuration for npm dependencies (#5378)
Browse files Browse the repository at this point in the history 
Motivation:

The following [PR](#5377) attempts
to update the `package-lock.json` file only.
I've read through the following documents, and believe that specifying
the versioning strategy will help update the actual `package.json`
dependencies

Modifications:

- Added a versioning strategy for dependabot
- Specified the interval to monthly so that it is better in-sync with
our release schedule and we don't receive multiple update pull requests

Result:

- Improved dependabot pull requests

<!--
Visit this URL to learn more about how to write a pull request
description:

https://armeria.dev/community/developer-guide#how-to-write-pull-request-description
-->
  • Loading branch information
@jrhee17
jrhee17 authored Jan 30, 2024
1 parent 8a41166 commit 26f1b70
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions .github/dependabot.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,3 +29,9 @@ updates:
time: "10:00"
# Use Korea Standard Time (UTC +09:00)
timezone: "Asia/Seoul"

- package-ecosystem: "npm"
directory: "/"
schedule:
interval: "monthly"
versioning-strategy: increase

0 comments on commit 26f1b70

Please sign in to comment.