dependabot-azure-devops
dependabot-azure-devops copied to clipboard
tinglesoftware
Tools for updating dependencies in Azure DevOps repositories using https://dependabot.com
This morning I noticed a warning about explicit inputs being deprecated. I went to work to migrate to a configuration file, but I'm not sure how to accomplish it. I...
We are using dependabot for updating dependencies automatically. However, looks like it does not work with private feeds if the same is being used with azure devops pipeline. Here is...
Hi, If I run dotnet list package --include-transitive --vulnerable in Visual Studio I am informed of vulnerable transitive dependencies and can remediate by adding a package reference in the affected...
The problem that we have is that there are multiple projects/directories (owned by different people) that have the same set of dependencies in the same repository. 1. Dependabot will open...
To resolve the warnings regarding migration of the inputs we ran into a couple of issues. The first is already covered in #327 The other problem that we have is...
I don't know if it can be paired with Azure Devops as a CI and Github as a source repository.
[Should this work for the taks parameter openPullRequestLimit too? ](https://docs.github.com/en/code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates)
We have a solution with a combination of .NET Framework and .NET 6 projects against which we run a dependabot job once every night in Azure Devops. Everything works fine...
I am using the extension with an ADO Server, when I enable the Auto Complete in the dependabot run, the commit message does not follow the default naming Example: Top...
I have been using Azure Dependabot with my registry for a few months it has been working well. However, it is now warning that input parameters outside of the config...
Metadata
Owner
Metadata
Tools for updating dependencies in Azure DevOps repositories using https://dependabot.com