BitGo · ericcrosson-bitgo · May 12, 2022 · May 13, 2022 · May 13, 2022 · May 13, 2022
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,13 @@
+version: 2
+updates:
+  # Enable npm updates
+  - package-ecosystem: npm
+    directory: /
+    schedule:
+      interval: daily
+      # UTC
+      time: '08:00'
+    reviewers:
+      - '@BitGo/internal-tools'
+    labels:
+      - dependencies
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -10,7 +10,7 @@ jobs:
 
     strategy:
       matrix:
-        node-version: ['12', '14', '16']
+        node-version: ['12', '14', 'lts/*']
 
     name: Node.js ${{ matrix.node-version }}
     steps:
@@ -35,7 +35,9 @@ jobs:
         uses: actions/cache@v3
         with:
           path: node_modules/.cache
-          key: turbo-${{ matrix.node-version }}-${{ github.ref_name }}-${{ github.job }}-${{ github.sha }}
+          key:
+            turbo-${{ matrix.node-version }}-${{ github.ref_name }}-${{ github.job
+            }}-${{ github.sha }}
           # According to GitHub documentation, only keys generated by the PR branch and the target branch are considered. This is
           # to prevent a malicious PR from manipulating the cache to inject malicious code into unrelated branches.
           # See: https://docs.github.com/en/actions/using-workflows/caching-dependencies-to-speed-up-workflows#matching-a-cache-key