]> git.proxmox.com Git - mirror_edk2.git/commitdiff
projects / mirror_edk2.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d992163)
.github/dependabot.yml: Enable dependabot
authorMichael Kubacki <michael.kubacki@microsoft.com>
Thu, 10 Nov 2022 12:26:23 +0000 (07:26 -0500)
committermergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Tue, 29 Nov 2022 00:21:43 +0000 (00:21 +0000)
Enables dependabot in this repo so we can better alerted when
dependency updates are available.

This GitHub action will automatically create pull requests and
summarize the dependency details. Because it is a pull request,
the CI system will validate the dependency update in the pull
request.

Configures dependabot for:

1. PIP module updates
2. GitHub action updates

The maintainers/reviewers of the .github directory were added as
pull request reviewers so they can be notified when the pull request
is available.

Note to Maintainers:
  After this change is committed, PRs from dependabot will be
  automatically created in the edk2 repo.  Never set the 'push' label
  directly on these PRs. If a dependency identified by dependedabot
  looks like one that should be updated in the edk2 repo, then copy
  the PR generated by dependabot to your personal fork and update the
  commit message to follow the edk2 commit message requirements and
  send as a normal code review.

Cc: Sean Brogan <sean.brogan@microsoft.com>
Cc: Michael D Kinney <michael.d.kinney@intel.com>
Signed-off-by: Michael Kubacki <michael.kubacki@microsoft.com>
Reviewed-by: Michael D Kinney <michael.d.kinney@intel.com>
Reviewed-by: Sean Brogan <sean.brogan@microsoft.com>
.github/dependabot.yml [new file with mode: 0644] patch | blob

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644 (file)
index 0000000..b4e0b93
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,34 @@
+## @file\r
+# Dependabot configuration file to enable GitHub services for managing and updating\r
+# dependencies.\r
+#\r
+# Copyright (c) Microsoft Corporation.\r
+# SPDX-License-Identifier: BSD-2-Clause-Patent\r
+#\r
+# Please see the documentation for all configuration options:\r
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates\r
+##\r
+version: 2\r
+updates:\r
+  - package-ecosystem: "pip"\r
+    directory: "/"\r
+    schedule:\r
+      interval: "daily"\r
+    commit-message:\r
+      prefix: "pip"\r
+    reviewers:\r
+      - "makubacki"\r
+      - "mdkinney"\r
+      - "spbrogan"\r
+\r
+  - package-ecosystem: "github-actions"\r
+    directory: "/"\r
+    schedule:\r
+      interval: "weekly"\r
+      day: "monday"\r
+    commit-message:\r
+      prefix: "GitHub Action"\r
+    reviewers:\r
+      - "makubacki"\r
+      - "mdkinney"\r
+      - "spbrogan"\r
EFI Development Kit II mirror for PVE