Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Migrate Alizer to Dependabot #1163

Closed
Tracked by #1162
thepetk opened this issue Jun 30, 2023 · 4 comments
Closed
Tracked by #1162

Migrate Alizer to Dependabot #1163

thepetk opened this issue Jun 30, 2023 · 4 comments
Assignees
@thepetk
Labels
area/alizer Enhancement or issue related to the alizer repo area/ci

Comments

@thepetk
Copy link
Contributor

thepetk commented Jun 30, 2023
edited
Loading

Which area this feature is related to?

/area alizer
/area ci

Issue details

This issue is part of alizer#160. As mentioned inside, we have to separate the gosec and dependabot. The latter will be added in alizer after the onboarding to devfile team.

Related Issues

redhat-developer/alizer#119
redhat-developer/alizer#160

Target Date: 11 July 2023
@thepetk thepetk self-assigned this Jun 30, 2023
@openshift-ci openshift-ci bot added area/alizer Enhancement or issue related to the alizer repo area/ci labels Jun 30, 2023
@thepetk thepetk moved this to To Do 📝 in Devfile Project Jun 30, 2023
This was referenced Jun 30, 2023
Closed
Closed
@thepetk thepetk moved this from To Do 📝 to In Progress 🚧 in Devfile Project Jul 5, 2023
@thepetk
Copy link
Contributor Author

thepetk commented Jul 5, 2023

I've created a dependabot.yaml and enabled dependabot updates on my fork (https://github.com/thepetk/devfile-alizer)

@thepetk thepetk moved this from In Progress 🚧 to To Do 📝 in Devfile Project Jul 5, 2023
@thepetk
Copy link
Contributor Author

thepetk commented Jul 6, 2023

In order to allow dependabot alerts for alizer we should:

  • Go to repo > settings > code security and analysis

  • Enable the dependabot alerts:
    Image

@thepetk thepetk moved this from To Do 📝 to In Review 👀 in Devfile Project Jul 6, 2023
@elsony
Copy link
Contributor

elsony commented Jul 10, 2023

I have changed the dependabot setting

@thepetk
Copy link
Contributor Author

thepetk commented Jul 10, 2023
edited
Loading

Thanks @elsony! Closing this as it is done after the update of the settings and is aligned to the rest of the projects inside devfiles org

@thepetk thepetk closed this as completed Jul 10, 2023
@thepetk thepetk moved this from In Review 👀 to Done ✅ in Devfile Project Jul 10, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@thepetk thepetk

Labels
area/alizer Enhancement or issue related to the alizer repo area/ci
Projects
Devfile Project
Status: Done ✅
Milestone
No milestone
Development

No branches or pull requests
2 participants
@elsony @thepetk