fetch-metadata
fetch-metadata copied to clipboard
dependabot
Extract information about the dependencies being updated by a Dependabot-generated PR.
Bumps the dev-dependencies group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `20.11.20` |...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps the dependencies group with 2 updates: [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) and [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github). Updates `@actions/core` from 1.10.0 to 1.10.1 Changelog Sourced from @actions/core's changelog. 1.10.1 Fix error message reference in oidc utils #1511...
It will be important to know how "old" is the new version. In many cases, we don't want to merge very fresh dependencies, and we wish to delay it for...
Release notes: https://github.com/dependabot/fetch-metadata/releases/tag/v2.2.0
![fetch-metadata-action-automation[bot] avatar](https://avatars.githubusercontent.com/u/27347476?v=4 "fetch-metadata-action-automation[bot] avatar"){kind=avatar}
Fixes #493 Fixes #494 This improves directory extraction to handle two previously unhandled cases: 1. a multi-segment directory with a non-standard separator is now properly reconstructed by joining on `/`...
Hello, I have the same issue like this person: [Dependabot "update-type" not available in metadata retrieved for PR using dependabot/fetch-metadata@v1](https://stackoverflow.com/questions/77911994/dependabot-update-type-not-available-in-metadata-retrieved-for-pr-using-depend) For example here: https://github.com/simonschaufi/php-libkml/actions/runs/8285139412/job/22672206081 ``` Run dependabot/[email protected] with: github-token: ***...
Given a branch name like `dependabot-pip-dirname-stripe-8.1.0` fetch-metadata produces metadata like: ``` outputs.dependency-names: stripe outputs.dependency-type: direct:production outputs.update-type: version-update:semver-major outputs.directory: /dirname-stripe outputs.package-ecosystem: pip outputs.target-branch: trunk outputs.previous-version: 3.5.0 outputs.new-version: 8.1.0 outputs.compatibility-score: 0 outputs.maintainer-changes:...
Bumps [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) from 5.1.1 to 6.0.0. Changelog Sourced from @actions/github's changelog. 6.0.0 Support the latest Octokit in @actions/github #1553 Drop support of NodeJS v14, v16 Commits See full diff in...
I have an automerge workflow that checks the PR author: ` if: ${{ github.event.workflow_run.conclusion == 'success' && github.actor == 'dependabot[bot]' }} ` and gets triggered after the tests workflow: ```...
### Errror I'm using mono-repository for the microservices: - Dependabot opens PR for Microservice 1 (Ex: path: /src/microservices-1/*) - The workflow `CI for Microservice 1` is triggered. - The workflow...
Metadata
Owner
Metadata
Extract information about the dependencies being updated by a Dependabot-generated PR.