Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(CI/CD): add dependabot for automatic dependency updates #844

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

harmeetsingh11
Copy link
Contributor

Related Issue:

Fixes #842

Description:

This Pull Request addresses the need to automate the management of project dependencies for enhanced stability, security, and maintenance.

Changes Proposed:

  1. Dependabot Integration: Add Dependabot to the project.
  2. Automated Dependency Updates: Upon activation, Dependabot will automatically submit pull requests (PRs) when outdated dependencies are identified in our package.json file.

Benefits:

  • Stability: Ensures the project remains stable by adopting the latest versions of dependencies.
  • Security: Enhances security by promptly addressing and updating vulnerable dependencies.
  • Maintenance: Automates the process, reducing manual effort and ensuring continuous improvement.

Checklist:

  • Dependabot integrated successfully.

@thevirengarg please review this PR.
Thanks

Added dependabot to the project. Upon activation, it will automatically submit pull requests (PRs) when outdated dependencies are identified in package.json files.
closes HITK-TECH-Community#842
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

[Feature]: Integrate Dependabot for Automated Dependency Updates
1 participant