action-dependabot-auto-merge

action-dependabot-auto-merge copied to clipboard

approve-only switch

3

Is there a way to only approve a PR without trying to merge it? In case auto-merge is performed by other tools (like mergify).

mattiaverga

Hi, We are using code based on [dependabot-script](https://github.com/dependabot/dependabot-script) to enact dependency updates. We chose to do this so that we could have immediate updates of our internal deps (as opposed...

louism517

TypeError: Cannot read properties of undefined (reading 'createReview')

14

I am still in the process of further investigating what could have changed, but I thought I am going to post here in case anyone else has an idea. As...

maciejmakowski

Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2. Commits 699c459 3.1.2 2f2b5ff fix: trim pattern 25d7c0d 3.1.1 55dda29 fix: treat nocase:true as always having magic 5e1fb8d 3.1.0 f8145c5 Add 'allowWindowsEscape' option 570e8b1...

dependabot[bot]

Is it somehow possible to have the configuration file stored outside the repository (e.g. in another repository or URL)? This would allow reusing the same configuration without duplication to each...

Sam13

EX: https://github.com/mdn/yari/pull/7272 now Dependabot will create PRs to bump related dependancies together. Not sure if https://github.com/ahmadnassri/action-dependabot-auto-merge/pull/151 might handle this, but thought I'd create a separate issue.

nschonni

Workflow file: ```yaml name: Auto-merge dependabot PRs on: pull_request: jobs: auto-merge: runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 - uses: ahmadnassri/action-dependabot-auto-merge@v2 with: target: minor github-token: ${{ secrets.GITHUB_TOKEN }} ``` Workflow artifact:...

Falcion

This following link no longer exists but is used to document this action [legacy dependaBot v1 config format](https://dependabot.com/docs/config-file/#automerged_updates)

leoherbie