Skip to content

Commit

Permalink
Add a profile for enforcing lightweight dependabot configuration
Browse files Browse the repository at this point in the history
Signed-off-by: Radoslav Dimitrov <[email protected]>
  • Loading branch information
rdimitrov committed Jan 9, 2025

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
1 parent 52c0baf commit f7d5606
Showing 1 changed file with 65 additions and 0 deletions.
65 changes: 65 additions & 0 deletions profiles/github/stacklok-lightweight-dependabot.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,65 @@
---
# Stacklok profile
version: v1
type: profile
name: stacklok-lightweight-dependabot
display_name: Stacklok Lightweight Dependabot Profile
context:
provider: github
alert: "off"
remediate: "on"
repository:
- type: enforce_file
name: "Enforce lightweight Dependabot config for Go projects"
def:
apply_if_file: go.mod
file: ".github/dependabot.yml"
content: |
version: 2
updates:
- package-ecosystem: "github-actions"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 10
- package-ecosystem: "gomod"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 10
- type: enforce_file
name: "Enforce lightweight Dependabot config for JavaScript projects"
def:
apply_if_file: package.json
file: ".github/dependabot.yml"
content: |
version: 2
updates:
- package-ecosystem: "github-actions"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 10
- package-ecosystem: "npm"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 10
- type: enforce_file
name: "Enforce lightweight Dependabot config for Python projects"
def:
apply_if_file: requirements.txt
file: ".github/dependabot.yml"
content: |
version: 2
updates:
- package-ecosystem: "github-actions"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 10
- package-ecosystem: "pip"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 10

0 comments on commit f7d5606

Please sign in to comment.