🤖 Dependabot's core logic for creating update PRs.
MIT License
Published by honeyankit 10 months ago
*.proj
files as dependencies by @brettfo in https://github.com/dependabot/dependabot-core/pull/8569
spoom bump
as part of CI by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8469
requires
of deleted go
native helper functionality by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/8630
BranchNamer::Base
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8557
MetadataFinders
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8556
Experiments
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8555
git
default branch warning into logs/tests by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/8632
Dependabot::Requirement
class by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8492
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.238.0...v0.239.0
Published by honeyankit 11 months ago
GitMetadataFetcher
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8441
Dependabot::Dependency
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8418
nuget
files type strictness by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8468
.yanrc.yml
when missing environment variables prevent yarn from running by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8446
Directory.Packages.props
by @brettfo in https://github.com/dependabot/dependabot-core/pull/8511
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.237.0...v0.238.0
Published by honeyankit 11 months ago
# typed: false
for bin files by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8287
common
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8304
LinkAndMentionSanitizer
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8298
source
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8272
SharedHelpers
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8302
pipenv lock
with pipenv upgrade
by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8312
SharedHelpers
more thoroughly by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8310
pipenv upgrade
errors in Sentry by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8323
setup.rb
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8317
ExceptionSanitizer
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8314
FileFetchers::Base
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8327
and_call_original
-related flaky spec by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8392
and_call_original
issues by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8394
# typed: true
where possible by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8385
file
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8384
UpdateConfig
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8403
DependencyGroup
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8404
PullRequestCreator::Message
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8410
SimpleInstrumentor
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8421
VersionFilters
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8409
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.236.0...v0.237.0
Published by Nishnha 12 months ago
ArtifactUpdater
and VendorUpdater
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8215
updater
directory in sorbet by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8247
logger
and commit_signer
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8269
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.235.0...v0.236.0
Published by landongrindheim about 1 year ago
.rbi
as linguist-generated
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8209
FileUpdaters::Base
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8214
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.234.0...v0.235.0
Published by jakecoffman about 1 year ago
Layout/MultilineMethodCallIndentation
offense by @ydah in https://github.com/dependabot/dependabot-core/pull/8134
dry-run.rb
improvement to also handle file fetching errors by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8173
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.233.0...v0.234.0
Published by honeyankit about 1 year ago
0.5.11011
to 0.5.11026
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8064
sig
s for utils
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8096
.npmrc
for PNPM by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/8094
version.rb
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8049
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.232.0...v0.233.0
Published by Nishnha about 1 year ago
typed: true
using spoom
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8021
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.231.0...v0.232.0
Published by jakecoffman about 1 year ago
rstrip
to trim trailing newlines by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/7991
Layout/DotPosition
to leading
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/7789
.git-blame-ignore-revs-file
and ignore style change by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/7992
typed: false
sigil by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8015
rubocop-sorbet
by @JamieMagee in https://github.com/dependabot/dependabot-core/pull/8016
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.230.0...v0.231.0
Published by landongrindheim about 1 year ago
python3
/pip3
so we don't have to have python
/pip
symlinks by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7927
gzip
with zstd
for speed + size benefits by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7950
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.229.0...v0.230.0
Published by bdragon about 1 year ago
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.228.0...v0.229.0
Published by honeyankit about 1 year ago
ubuntu
to 22.04
LTS by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/5030
yamllint
to linters by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7818
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.227.0...v0.228.0
Published by jakecoffman about 1 year ago
dependabot/utils
before usage by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7800
python
3.6
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7610
3.6
guard when setting poetry config experimental.system-git-client
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7614
pip-tools
to 7.2.0
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7711
pip
no longer requires a range by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7714
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.226.0...v0.227.0
Published by bdragon about 1 year ago
bugtrack_url
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7681
conf_files
dir to pip_conf_files
to reduce ambiguity by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7690
poetry
test of oldest supported python version to 3.8 by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7691
host-environment-markers
key by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7698
pip_version_resolver
specs by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7699
Pipfile
/Pipfile.lock
fixtures to a clearly named folder by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7700
python_major_minor
a one-liner by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7705
wheel
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7719
--verbose
when running specs by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7708
aws-sdk-*
PRs by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7732
legacy
resolver to force desired error message by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7738
error_certainly_bad_python_version?
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7739
pipenv lock
with pipenv requirements
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7764
puts
debugging message by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7779
fetch_file_if_present
should ignore all "Not Found" errors by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7774
require
by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7781
wheel
by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7784
name
key to sources
in Pipfile
s by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7744
package.json
files by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7245
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.225.0...v0.226.0
Published by honeyankit about 1 year ago
directory
is configured by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7674
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.224.0...v0.225.0
Published by Nishnha about 1 year ago
Dockerfile
for python by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7609
git
if not installed by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/6409
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.223.0...v0.224.0
Published by deivid-rodriguez over 1 year ago
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.222.0...v0.223.0
Published by deivid-rodriguez over 1 year ago
GitCommitChecker
to check subdependencies too by @deivid-rodriguez in https://github.com/dependabot/dependabot-core/pull/7464
updater/bin
into the docker dev shell by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7567
"v"
prefix for the helper path by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7582
composer
version into a metric by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7323
groupId
and artifactId
for the dependency name by @yeikel in https://github.com/dependabot/dependabot-core/pull/7146
python_version
-> python_version_file
for clarity by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7616
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.221.0...v0.222.0
Published by landongrindheim over 1 year ago
persistent_gems_after_clean
workaround by @jurre in https://github.com/dependabot/dependabot-core/pull/7296
DEPENDABOT
environment variable for users by @shu-mutou in https://github.com/dependabot/dependabot-core/pull/7407
ecosystem
param by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7492
hex.pm/orgs/dependabot
token by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7532
record_ecosystem_versions
endpoint. by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7517
inputs
API by @jeffwidman in https://github.com/dependabot/dependabot-core/pull/7550
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.220.0...v0.221.0
Published by brrygrdn over 1 year ago
Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.219.0...v0.220.0