Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable Dependabot for Docker, NodeJS and GitHub Actions depencies #66

Merged
merged 1 commit into from
Nov 2, 2023
Merged

Enable Dependabot for Docker, NodeJS and GitHub Actions depencies #66

merged 1 commit into from
Nov 2, 2023

Conversation

rugk
Copy link
Contributor

@rugk rugk commented Nov 1, 2023
edited

AFAIK (and this was new to me) Dependabot is not active by default.

This enables it for all dependencies here, so it scans and suggests updates. See https://docs.github.com/en/code-security/dependabot/working-with-dependabot
This is important to get security updates (especially to maintain your Docker images) and then to publish them. Because if you publish Docker images you are now responsible for all these dependencies and Linux stuff in the container to keep it up-to-date.

GitHub Actions is as far as I see not yet used, but well… easy enough to do that hehe soon…

@rugk
Enable Dependabot for Docker and GitHub Actions
cd96e66 
AFAIK (and this was new to me) Dependabot is not active by default.

This enables it for all dependencies here, so it scans and suggests updates.

GitHub Actions is as far as I see not yet used, but well… easy enough to do that hehe soon…
@rugk rugk mentioned this pull request Nov 1, 2023
Closed
@rugk rugk changed the title Enable Dependabot for Docker and GitHub Actions Enable Dependabot for Docker, NodeJS and GitHub Actions depencies Nov 1, 2023
@Ravinou
Copy link
Owner

Ravinou commented Nov 2, 2023

It's in the pipe, with automatic build of docker images to dockerhub. Thanks for your help!

@Ravinou Ravinou self-assigned this Nov 2, 2023
@Ravinou Ravinou self-requested a review November 2, 2023 16:09
@Ravinou Ravinou merged commit 0377b16 into Ravinou:main Nov 2, 2023
@rugk rugk deleted the patch-1 branch November 2, 2023 22:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Ravinou Ravinou Awaiting requested review from Ravinou

Assignees

@Ravinou Ravinou

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@rugk @Ravinou