CI/CD - Disable version update, allow security update only (#224)

Disable dependabot version update, allow security update only. Reference: https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates#open-pull-requests-limit.

CI/CD - Disable version update, allow security update only (#224)
Disable dependabot version update, allow security update only. Reference: https://docs.github.com/en/code-security/supply-chain-security/keeping-your-dependencies-updated-automatically/configuration-options-for-dependency-updates#open-pull-requests-limit.
5283bdeb · Yifan Xiong · GitHub · 849b6cac · 5283bdeb
Unverified Commit 5283bdeb authored Oct 12, 2021 by Yifan Xiong Committed by GitHub Oct 12, 2021
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 0 deletions

.github/dependabot.yml .github/dependabot.yml +2 -0

No files found.
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -5,6 +5,7 @@ updates:
    directory: "/"
    schedule:
      interval: "weekly"
+    open-pull-requests-limit: 0
    allow:
      - dependency-type: "direct"
    labels:
@@ -16,6 +17,7 @@ updates:
    directory: "/website/"
    schedule:
      interval: "weekly"
+    open-pull-requests-limit: 0
    labels:
      - "dependencies"
    assignees: