Request to add OpenTofu as GitHub's supported ecosystem for Dependabot package updates #1236
Labels
accepted
This issue has been accepted for implementation.
blocked
Issues which are blocked by inbound dependencies
enhancement
New feature or request
OpenTofu Version
Use Cases
For keeping up-to-date with the regular flow of dependency updates across all providers.
Attempted Solutions
Using
terraform
in dependabot.yml which, let's be frank, is "eugh" in 2024.It's also interesting to note the supported version range is only
>= 0.13, <= 1.5.x
; I wonder why that may be...Proposal
Use
opentofu
within dependabot.yml instead as a 1-to-1 replacement!Following today's public dev-sync, here's a link to the current handling of dependabot-terraform (with a dash of Ruby).
References
https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/about-dependabot-version-updates#supported-repositories-and-ecosystems
The text was updated successfully, but these errors were encountered: