Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Is dependabot disabled ? Missing incoming PRs (e.g. alpine 3.18.5) #153

Open
gberche-orange opened this issue Dec 1, 2023 · 0 comments
Open

Is dependabot disabled ? Missing incoming PRs (e.g. alpine 3.18.5) #153

gberche-orange opened this issue Dec 1, 2023 · 0 comments

Comments

@gberche-orange
Copy link

gberche-orange commented Dec 1, 2023
edited
Loading

Thanks for sharing this great image! I see from #111 that dependabot was turned on through #113 and dependabot PRs where indeed received and merged https://github.com/nicolaka/netshoot/pulls/app%2Fdependabot

Currently, docker file specifies 3.18

netshoot/Dockerfile

Line 10 in d8d9558

FROM alpine:3.18.0

following manual bump in f103f39

And i don't see an incoming PR from dependabot for more recent alpine versions such as 3.18.5

I wonder whether dependabot is now disabled at the github project settings level.

I forked the repo at https://github.com/orange-cloudfoundry/netshoot and enabled the dependabot
image

and now properly see incoming dependabot PRs https://github.com/orange-cloudfoundry/netshoot/pulls
image

Any chance to renable dependabot updates and security updates to get up-to-date security bumps by dependabot ?
@gberche-orange gberche-orange changed the title Is dependabot disabled ? Missing PRs for alpine 3.18.5 Is dependabot disabled ? Missing incoming PRs (e.g. alpine 3.18.5) Dec 1, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gberche-orange