-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathdependabot.yaml
28 lines (28 loc) · 1.01 KB
/
dependabot.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
version: 2
updates:
- package-ecosystem: github-actions
directory: /
schedule:
interval: weekly
time: "07:00"
timezone: "Asia/Tokyo"
labels: ["dependencies/github_actions"]
- package-ecosystem: cargo
directory: /
schedule: # github does not support yaml anchors
interval: weekly
time: "07:00"
timezone: "Asia/Tokyo"
labels: ["dependencies/rust"]
# https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#groups
# If a dependency doesn't belong to any group, Dependabot will continue to raise single pull requests to update the dependency to its latest version as normal.
groups:
opentelemetry:
applies-to: version-updates
patterns: ["opentelemetry*"]
axum:
applies-to: version-updates
patterns: ["axum", "axum-server", "async-graphql", "async-graphq-axum"]
rust-patch:
applies-to: version-updates
update-types: ["patch"]