Maria Tsilimos
commited on
Create dependabot.yml
Browse files- .github/dependabot.yml +22 -0
.github/dependabot.yml
ADDED
|
@@ -0,0 +1,22 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1 |
+
# To get started with Dependabot version updates, you'll need to specify which
|
| 2 |
+
# package ecosystems to update and where the package manifests are located.
|
| 3 |
+
# Please see the documentation for all configuration options:
|
| 4 |
+
# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
|
| 5 |
+
|
| 6 |
+
version: 2
|
| 7 |
+
updates:
|
| 8 |
+
# Enable version updates for npm
|
| 9 |
+
- package-ecosystem: "npm"
|
| 10 |
+
# Look for `package.json` and `lock` files in the `root` directory
|
| 11 |
+
directory: "/" # Adjust this if your package.json is in a subdirectory
|
| 12 |
+
# Check the npm registry for updates every day (weekdays)
|
| 13 |
+
schedule:
|
| 14 |
+
interval: "daily"
|
| 15 |
+
|
| 16 |
+
# Enable version updates for pip (Python)
|
| 17 |
+
- package-ecosystem: "pip"
|
| 18 |
+
# Look for `requirements.txt` (or pyproject.toml) in the root directory
|
| 19 |
+
directory: "/" # IMPORTANT: Change this if your requirements.txt is in a subdirectory
|
| 20 |
+
# Check for updates weekly
|
| 21 |
+
schedule:
|
| 22 |
+
interval: "weekly"
|