30 lines
894 B
YAML
30 lines
894 B
YAML
# `dependabot.yml` file with updates
|
|
# disabled for Docker and limited for npm
|
|
|
|
version: 2
|
|
updates:
|
|
# Configuration for Dockerfile
|
|
- package-ecosystem: 'docker'
|
|
directory: '/'
|
|
schedule:
|
|
interval: 'weekly'
|
|
# Disable all pull requests for Docker dependencies
|
|
# open-pull-requests-limit: 0
|
|
|
|
# Configuration for npm
|
|
- package-ecosystem: 'npm'
|
|
directory: '/'
|
|
schedule:
|
|
interval: 'weekly'
|
|
ignore:
|
|
# Ignore updates to packages that start with 'aws'
|
|
# Wildcards match zero or more arbitrary characters
|
|
- dependency-name: 'aws*'
|
|
# Ignore some updates to the 'express' package
|
|
- dependency-name: 'express'
|
|
# Ignore only new versions for 4.x and 5.x
|
|
versions: ['4.x', '5.x']
|
|
# For all packages, ignore all patch updates
|
|
- dependency-name: '*'
|
|
update-types: ['version-update:semver-patch']
|