Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Dependabot updates #3549

Open
2 tasks
allly-b opened this issue Feb 21, 2025 · 1 comment
Open
2 tasks

Dependabot updates #3549

allly-b opened this issue Feb 21, 2025 · 1 comment
Labels
dev issue is for the dev team quick fix
Milestone
End of PoP handoff

Comments

@allly-b
Copy link
Contributor

allly-b commented Feb 21, 2025

Issue description

Some of our dependabot security updates didn't auto-open PRs in our repo, which means we need to manually apply those dependency updates. At the time of writing this, there are just 2 updates needed (note that each one is appearing twice, for a total of 4 entries even though it's just two packages that need to be updated).

Acceptance criteria

  • update the dependencies mentioned in our dependabot page
  • close the alerts when done

Additional context

when closing the alerts you can just close them as "a fix has already been started'

Links to other issues

No response
@allly-b allly-b added the dev issue is for the dev team label Feb 21, 2025
@allly-b allly-b moved this from 👶 New to 🎯 Ready in .gov Product Board Feb 21, 2025
@allly-b allly-b added this to the End of PoP handoff milestone Feb 21, 2025
@allly-b
Copy link
Contributor Author

allly-b commented Feb 21, 2025

priority is high as we should make sure to bring in the newest updates to our dependencies in a timely manner.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
dev issue is for the dev team quick fix
Projects
.gov Product Board
Status: 🎯 Ready
Milestone
End of PoP handoff
Development

No branches or pull requests
1 participant
@allly-b