Dependabot
Dependabot is used to automatically update dependencies.
Configuration¶
registries¶
Used to access private registries Note: If you need access to both private & public registries, then a reference the the public registry is also required (e.g.
https://api.nuget.org/v3/index.json) here, and in theregistriessection below
type¶
nuget-feedgit
url¶
username¶
password¶
updates¶
package-ecosystem¶
github-actionsgitsubmodulenuget
registries¶
schedule¶
interval¶
dailyweeklymonthlyyearly
Code¶
version: 2
registries:
private-github:
type: git
url: https://github.com
username: ${{ secrets.USER_NAME }}
password: ${{ secrets.MY_TOKEN }}
private-nuget-packages:
type: nuget-feed
url: https://nuget.pkg.github.com/${{ secrets.USER_NAME }}/index.json
username: ${{ secrets.USER_NAME }}
password: ${{ secrets.MY_TOKEN }}
public-nuget-packages:
type: nuget-feed
url: https://api.nuget.org/v3/index.json
updates:
- package-ecosystem: github-actions
commit-message:
prefix: "(dependabot)"
directory: "/"
schedule:
interval: monthly
assignees:
- "TylerCarrol"
reviewers:
- "TylerCarrol"
- package-ecosystem: nuget
commit-message:
prefix: "(dependabot)"
directory: "/"
registries:
- private-nuget-packages
- public-nuget-packages
schedule:
interval: monthly
assignees:
- "TylerCarrol"
reviewers:
- "TylerCarrol"
- package-ecosystem: gitsubmodule
directory: /
registries:
- private-github
schedule:
interval: monthly
assignees:
- "TylerCarrol"
reviewers:
- "TylerCarrol"