chore: Group DependableBot Updates monthly #2673
Conversation
* run only 12 times per year * group as much as possible * reduce merge conflicts by running less often
🦙 MegaLinter status:
|
| Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
|---|---|---|---|---|---|
| ✅ EDITORCONFIG | editorconfig-checker | 1 | 0 | 0.0s | |
| ✅ REPOSITORY | gitleaks | yes | no | 2.6s | |
| ✅ REPOSITORY | git_diff | yes | no | 0.01s | |
| ✅ REPOSITORY | grype | yes | no | 10.09s | |
| ✅ REPOSITORY | secretlint | yes | no | 1.21s | |
| ✅ REPOSITORY | trivy-sbom | yes | no | 0.1s | |
| ✅ REPOSITORY | trufflehog | yes | no | 3.91s | |
| prettier | 1 | 1 | 0.24s | ||
| ✅ YAML | v8r | 1 | 0 | 2.61s |
See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff
MegaLinter is graciously provided by
|
Thanks for your review Looks much better in my test repo |
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #2673 +/- ##
===========================================
+ Coverage 61.56% 74.28% +12.72%
===========================================
Files 53 72 +19
Lines 9002 11050 +2048
===========================================
+ Hits 5542 8209 +2667
+ Misses 3020 2208 -812
- Partials 440 633 +193 ☔ View full report in Codecov by Sentry. |
|
I'm thinking maybe we could replace dependabot with renovate or add renovate and use this PR. Renovate can keep dependency dashboard (an open issue) and keeps it updated. |
|
Example: renovatebot/renovate#2958 |
|
Yes I'm open for this possibility to replace it with renovate like I have mentioned last week in our discussion space. On the other hand I'm lazy, I would stick with dependable bot for now as we are not impacted by usage restriction of the license and I have no need for such a dashboard. Seems like I make a PR soon to upgrade our docker module to the newer api, we use a now deprecated one and the linter blocks the bulk update due to deprecation |
I am going to evaluate this change in my fork, what do you think?
This should free my inbox a lot.