Skip to content

chore(dependabot): add dependabot config#200

Merged
mdevolde merged 1 commit into
jxmorris12:masterfrom
mdevolde:ci/dependabot
Jun 22, 2026
Merged

chore(dependabot): add dependabot config#200
mdevolde merged 1 commit into
jxmorris12:masterfrom
mdevolde:ci/dependabot

Conversation

@mdevolde

@mdevolde mdevolde commented Jun 22, 2026

Copy link
Copy Markdown
Collaborator

chore(dependabot): add dependabot config

Why the pull request was made

To have a clean config about dependencies auto-updates.

Summary of changes

  • Add a dependabot config
  • Update uv.lock weekly (with a cooldown of 7 days for patches, 14 days for minors and 30 days for majors, to reduce risks of supply chain).
  • Update github-actions monthly (with a cooldown of 14 days, to reduce risks of supply chain).
  • Update pre-commit monthly (with a cooldown of 14 days, to reduce risks of supply chain).

Screenshots (if appropriate):

Not applicable.

How has this been tested?

Not applicable.

Resources

https://docs.github.com/en/code-security/reference/supply-chain-security

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • Documentation update (changes to documentation only)
  • Refactor / code style update (non-breaking change that improves code structure or readability)
  • Tests / CI improvement (adding or updating tests or CI configuration only)
  • Chore / maintenance (non-breaking change that does not affect functionality, such as updating dependencies or fixing typos)
  • Other (please describe):

Checklist

  • Followed the project's contributing guidelines.
  • Updated any relevant tests.
  • Updated any relevant documentation.
  • Added comments to your code where necessary.
  • Formatted your code, run the linters, checked types and tests.
  • Added your changes to the CHANGELOG file, if applicable.

@mdevolde mdevolde self-assigned this Jun 22, 2026
@mdevolde mdevolde merged commit 63c1457 into jxmorris12:master Jun 22, 2026
12 checks passed
@mdevolde mdevolde deleted the ci/dependabot branch June 22, 2026 20:25
@codecov-commenter

codecov-commenter commented Jun 22, 2026

Copy link
Copy Markdown

⚠️ Please install the 'codecov app svg image' to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 80.46%. Comparing base (23dc3b8) to head (d592f6f).
⚠️ Report is 1 commits behind head on master.
❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master     #200   +/-   ##
=======================================
  Coverage   80.46%   80.46%           
=======================================
  Files          13       13           
  Lines        1746     1746           
=======================================
  Hits         1405     1405           
  Misses        341      341

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@mdevolde mdevolde

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mdevolde @codecov-commenter