Automatically merge your Dependabot PRs based on custom rules using a GitHub Actions cron job in its own repository.
Unlike other methods of automatic merging dependabot PRs which generally rely on another CI workflow, this template creates a single cron job for your entire organization. The benefits of this are:
Use the best strategy for your organization.
NPM_TOKEN
organization-wide GitHub action secret for your organization
org:usds
This template is designed for customization. Customize the modules in src/ to satisfy the requirements of your organization.
If you'd like to run continuously on a machine and not use GitHub Actions, which has a 5-minimum minimum interval from cron jobs, you can do the following:
npm link
(optional) - to make the dependabot-automerge
executable globalwhile true; do dependabot-automerge; sleep 60; done
to continuously run it with a 1 minute interval between runs