facebook/sapling
1
1
Fork 0
mirror of https://github.com/facebook/sapling.git synced 2025-01-03 02:25:40 +03:00
Code Issues Projects Releases Wiki Activity

oss: attempt to disable dependabot PRs

Browse Source 
Summary:
The dependabot PRs for Javascript and Rust cannot be used as-is because our
monorepo requires "offline mirrors" for dependencies that dependabot cannot
directly update. So let's just limit the dependabot PR to 0. I guess this
does not disable security alerts which are shown separately
(https://github.com/facebook/sapling/security/dependabot).

Reviewed By: zzl0

Differential Revision: D54129988

fbshipit-source-id: b98cd903786b4a0245a17c0343733b22a1f000c6
This commit is contained in:
Jun Wu 2024-02-23 12:52:06 -08:00 committed by Facebook GitHub Bot
parent 63f2d0543f
commit e8d223f033
1 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
dependabot.yml Normal file
View File

@ -0,0 +1,14 @@
# https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
version: 2
updates:
- package-ecosystem: "npm"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 0
- package-ecosystem: "cargo"
directory: "/"
schedule:
interval: "weekly"
open-pull-requests-limit: 0