Skip to content

chore: standardize enterprise Dependabot configuration#23

Open
somethingwithproof wants to merge 4 commits into
Cacti:developfrom
somethingwithproof:chore/dependabot-config
Open

chore: standardize enterprise Dependabot configuration#23
somethingwithproof wants to merge 4 commits into
Cacti:developfrom
somethingwithproof:chore/dependabot-config

Conversation

@somethingwithproof

Copy link
Copy Markdown

Adds grouped, cooled-down Dependabot updates with standard ecosystem labels and commit prefixes.

Copilot AI review requested due to automatic review settings July 14, 2026 17:52

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR introduces a new repository-level Dependabot configuration intended to standardize how GitHub Actions dependency updates are created (grouped updates, consistent labels, and commit message prefixes) targeting the develop branch.

Changes:

  • Adds .github/dependabot.yml to enable Dependabot updates for the github-actions ecosystem.
  • Configures weekly scheduling, grouping of all GitHub Actions updates into a single group, and standardized labels/commit message prefix.
  • Sets an open PR limit and attempts to introduce a “cooldown” period between updates.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread .github/dependabot.yml
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants