Configure dependabot for updates to production branch workflows

Dependabot will periodically check the versions of all actions used in the GitHub Actions workflows of the `production` branch. If any are found to be outdated, it will submit a pull request to update them. NOTE: Dependabot's PRs will occasionally propose to pin to the patch version of the action (e.g., updating `uses: foo/bar@v1` to `uses: foo/bar@v2.3.4`). When the action author has provided a major version ref, use that instead (e.g., `uses: foo/bar@v2`). Dependabot will automatically close its PR once the workflow has been updated. More information: https://docs.github.com/en/github/administering-a-repository/keeping-your-actions-up-to-date-with-dependabot
2025-07-29 14:01:15 +03:00 · 2021-07-15 05:30:15 -07:00
parent 9baebee831
commit 15b1347dae
1 changed files with 7 additions and 0 deletions
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@ -10,3 +10,10 @@ updates:
      interval: daily
    labels:
      - "topic: infrastructure"
+  - package-ecosystem: github-actions
+    target-branch: production
+    directory: /
+    schedule:
+      interval: daily
+    labels:
+      - "topic: infrastructure"