evergreen
evergreen copied to clipboard
github
GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.yaml file
### Is your feature request related to a problem? If you have a `dependabot.yml` with config for e.g. ecosystem `maven`, then add a new ecosystem in the same project (i.e....
Enable filtering repositories to run on by team, e.g. run on my organisation just for repos owned by the engineering team
The logic to detect whether to configure package updates for most ecosystems, except for GitHub Actions and Terraform only appears to consider files in the root of the repository. I...
Would be great to implement rate limiting so users don't get failed workflow runs because it was zooming through repos too fast.
Rather than requiring a full list of repos to exclude from Dependabot to be manually maintained, accepting repo labels to ignore would be more scalable.
GitHub Actions provides information about the URLs associated with the GitHub instance running the action, whether that is GitHub.com or GitHub Enterprise Server via the following properties of the [`github`](https://docs.github.com/actions/learn-github-actions/contexts#github-context)...
# Pull Request Fix https://github.com/github/evergreen/issues/168 ## Proposed Changes Set a default value to dependabot_filename_to_use rather than `None` ## Readiness Checklist ### Author/Contributor - [x] If documentation is needed for this...
### Is your feature request related to a problem? When setting up `dependabot.yml` files I typically need to set up at least one private registry, depending on the ecosystems being...
