snipe-it/.github/dependabot.yml at 5a7e35c0e8b399fb18db5bc3435d1628d95996e3 - DRCIT/snipe-it - Forgejo: Beyond coding. We forge.

DRCIT/snipe-it

mirror of https://github.com/snipe/snipe-it.git synced 2024-09-20 07:47:41 -07:00

naveen cfa301f5ae chore: Included githubactions in the dependabot config

This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

2022-07-01 01:33:50 +00:00

7 lines

118 B

YAML

Raw Blame History

 version: 2
 updates:
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
       interval: "weekly"