Jeff Widman

The idea sounds reasonable. Happy to try it! However, not sure the implementation is quite right... I remember spending two hours reading before, and got very conflicting info which of...

Don't give up hope! I've got some time allocated the next few weeks for working through the PR backlog, so slowly getting through them. 😀 Give me a little bit.

Tests are failing due to lint issues, I will clean those up quickly to ensure we can merge this.

This one is tricky because it's very similar to https://github.com/dependabot/dependabot-core/issues/2883, but slightly different because it's not just a config allow/ignore issue of already known manifests... it's about discovering manifests hiding...

Closing, as recommended above, a GitHub action is the best way to accomplish this.

This is now unblocked as we're just finishing up the migration to no longer run as root internally: * https://github.com/dependabot/dependabot-core/pull/6309 * https://github.com/github/dependabot-action/pull/379 * https://github.com/dependabot/cli/pull/46

Closing as a duplicate of: * https://github.com/dependabot/dependabot-core/issues/3565 I realize this one is older, but that one has a bit more info on it. Also related: * https://github.com/dependabot/dependabot-core/pull/6074

This seems like a duplicate of https://github.com/dependabot/dependabot-core/issues/396, so closing in favor of that. Also related: * https://github.com/dependabot/dependabot-core/issues/3407 * https://github.com/dependabot/dependabot-core/issues/4940#issuecomment-1238721997

This is still on our radar. Many thanks to @Nishnha who recently tweaked the DB query used to calculate the compatibility score. Our metrics showed a noticeable reduction in the...

@Nishnha made some further improvements here after @malcolmtaylor noticed the database wasn't using an index like we expected. Since then, we've seen a massive reduction in the number of query...