ci(dependabot): enable cooldown period
This setting will delay package updates by 3 days which generally should be enough time for supply chain attacks to be discovered
This commit is contained in:
ObserverOfTime
Amaan Qureshi
parent
00e394f0f1
commit
443acf080a
1 changed files with 6 additions and 0 deletions
6
.github/dependabot.yml
vendored
6
.github/dependabot.yml
vendored
|
|
@ -4,6 +4,8 @@ updates:
|
|||
directory: "/"
|
||||
schedule:
|
||||
interval: "weekly"
|
||||
cooldown:
|
||||
default-days: 3
|
||||
commit-message:
|
||||
prefix: "build(deps)"
|
||||
labels:
|
||||
|
|
@ -16,6 +18,8 @@ updates:
|
|||
directory: "/"
|
||||
schedule:
|
||||
interval: "weekly"
|
||||
cooldown:
|
||||
default-days: 3
|
||||
commit-message:
|
||||
prefix: "ci"
|
||||
labels:
|
||||
|
|
@ -31,6 +35,8 @@ updates:
|
|||
- "/lib/binding_web"
|
||||
schedule:
|
||||
interval: "weekly"
|
||||
cooldown:
|
||||
default-days: 3
|
||||
commit-message:
|
||||
prefix: "build(deps)"
|
||||
labels:
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue