-
Notifications
You must be signed in to change notification settings - Fork 7.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Reduce dependabot pull requests for web_embedding/ng-flutter sample #1809
Comments
johnpryan
added a commit
that referenced
this issue
May 11, 2023
domesticmouse
pushed a commit
that referenced
this issue
May 11, 2023
This configures dependabot to check for out-of-date NPM packages weekly instead of daily, and limits it to direct dependencies. There could be more we could do if we dig through the [Configuration options for the dependabot.yml file](https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file) documentation. cc: @ditman fixes #1809
We setup the "update-types" to ignore minor and patch versions in flutter/packages. I've sent a PR to mimic that configuration for |
domesticmouse
pushed a commit
that referenced
this issue
May 12, 2023
Take only security and major version updates for the `ng-flutter` sample. (Similar to what's done [here](https://github.com/flutter/packages/blob/main/.github/dependabot.yml#L33-L35)) ## Issues * Fixes #1809 _See [docs about the `update-types` dependabot setting](https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#specifying-dependencies-and-versions-to-ignore)._ ## Pre-launch Checklist - [x] I read the [Flutter Style Guide] _recently_, and have followed its advice. - [x] I signed the [CLA]. - [x] I read the [Contributors Guide]. - [x] I updated/added relevant documentation (doc comments with `///`). - [x] All existing and new tests are passing. If you need help, consider asking for advice on the #hackers-devrel channel on [Discord]. <!-- Links --> [Flutter Style Guide]: https://github.com/flutter/flutter/wiki/Style-guide-for-Flutter-repo [CLA]: https://cla.developers.google.com/ [Discord]: https://github.com/flutter/flutter/wiki/Chat [Contributors Guide]: https://github.com/flutter/samples/blob/main/CONTRIBUTING.md
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This sample is an angular app, and after #1774, we're getting too many pull requests
For example, when Angular 16.0.1 was released, we got these pull requests:
We could change the interval to "weekly" and look for other ways to reduce the number of PRs, such as
update-types: ["version-update:semver-minor"]
or settingallow
todependency-type: "direct"
.cc: @ditman @domesticmouse
The text was updated successfully, but these errors were encountered: