mirror of
https://github.com/goharbor/harbor.git
synced 2024-09-28 13:27:31 +02:00
Add dependabot.yaml to enable PRs (#17620)
We need dependabot enabled to get higher score on the OSSF scorecard https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool and here https://clomonitor.io/projects/cncf/harbor Signed-off-by: OrlinVasilev <ovasilev@vmware.com> Signed-off-by: OrlinVasilev <ovasilev@vmware.com> Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
This commit is contained in:
parent
805a36e7f0
commit
159169227b
25
.github/dependabot.yml
vendored
Normal file
25
.github/dependabot.yml
vendored
Normal file
@ -0,0 +1,25 @@
|
||||
# To get started with Dependabot version updates, you'll need to specify which
|
||||
# package ecosystems to update and where the package manifests are located.
|
||||
# Please see the documentation for all configuration options:
|
||||
# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
|
||||
|
||||
version: 2
|
||||
updates:
|
||||
|
||||
# Maintain dependencies for GitHub Actions
|
||||
- package-ecosystem: "github-actions"
|
||||
directory: "/"
|
||||
schedule:
|
||||
interval: "daily"
|
||||
|
||||
- package-ecosystem: "gomod"
|
||||
directory: "/"
|
||||
schedule:
|
||||
interval: "weekly"
|
||||
|
||||
- package-ecosystem: "gomod"
|
||||
directory: "tests/"
|
||||
schedule:
|
||||
interval: "weekly"
|
||||
|
||||
# More will be needed
|
Loading…
Reference in New Issue
Block a user