David Cook
|
3b49ba4de1
|
Allow Dependabot to update package.json
As per the industry standard, all version numbers are specified in package.json, so Dependabot is allowed to suggest increases when a new version is released. This is the default.
Discussed in https://community.openfoodnetwork.org/t/javascript-dependency-management-with-package-json/2753
|
2023-02-03 14:48:18 +11:00 |
|
Maikel Linke
|
bbafe9ff94
|
Restrict Dependabot to update only the lockfiles
This enables us to specify versions in the Gemfile and package.json and
Dependabot won't suggest updates we excluded that way.
|
2022-01-17 11:42:14 +11:00 |
|
Luis Ramos
|
ab6f6c463a
|
Fix problem in dependabot config, yarn is not a valid package-ecosystem, we can try npm
|
2020-12-08 20:00:19 +00:00 |
|
Luis Ramos
|
7a35fabb22
|
Move dependendabot config file to .github
|
2020-12-03 21:32:57 +00:00 |
|