-
Notifications
You must be signed in to change notification settings - Fork 878
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
build(dependabot): ignore minor and patch github-actions updates #1224
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm
amazing work! |
Go ahead and roll it out throughout the org. |
Just curious, apart from reducing the noise, why would you want to avoid getting any updates other than major? |
We don't "avoid getting any updates". We avoid getting constant bumps to configuration files for explicit version numbers. This change says "I don't care what version of the v2 line of checkout you use, just use the latest v2". |
GitHub's own actions follow this tag style for releases, so specifying |
Ah interesting, I didn't know. From what I understand it isn't generally true that using |
Very true. In my org, we use these |
This pull request has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
GitHub introduced the ability to ignore specific updates back in May.
This PR should stop Dependabot flooding PRs with every minor and patch update of GitHub's own actions every day.
Happy to make change for rest of Pino repos if wanted.