Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

dependabot auto update #499

Closed
030 opened this issue Feb 24, 2024 · 1 comment · Fixed by #500
Closed

dependabot auto update #499

030 opened this issue Feb 24, 2024 · 1 comment · Fixed by #500
Labels
bug Something isn't working

Comments

@030
Copy link
Owner

030 commented Feb 24, 2024

What happened:

What you expected to happen:

How to reproduce it (as minimally and precisely as possible):

Anything else we need to know?:

Environment:

  • nexus version:
  • n3dr version (use n3dr -v):
  • OS (e.g: cat /etc/os-release):
  • Kernel (e.g. uname -a):
  • Others:
@030 030 added the bug Something isn't working label Feb 24, 2024
@030
Copy link
Owner Author

030 commented Feb 24, 2024
edited
Loading

https://stackoverflow.com/a/64437873/2777965

dependabot/dependabot-core#1973

Auto-merge will not be supported in GitHub-native Dependabot for the foreseeable future. We know some of you have built great workflows that rely on auto-merge, but right now, we’re concerned about auto-merge being used to quickly propagate a malicious package across the ecosystem. We recommend always verifying your dependencies before merging them.

@030 030 linked a pull request Feb 24, 2024 that will close this issue
fix: [#499] Add default reviewer 030 to dependabot PRs. #500
Merged
@030 030 closed this as completed in #500 Feb 24, 2024
030 added a commit that referenced this issue Feb 24, 2024
@030
fix: [#499] Add default reviewer 030 to dependabot PRs. (#500)
9b63651 
fix: Add default reviewer 030 to dependabot PRs.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: [#499] Add default reviewer 030 to dependabot PRs. 030/n3dr
1 participant
@030