https://gitlab.com/dependabot-gitlab/dependabot

dependabot dependency updates

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Go to file

dependabot-bot d6c91e223a Merge branch 'dependabot-bundler-puma-6.4.0' into 'main' Bump puma from 6.3.1 to 6.4.0 See merge request dependabot-gitlab/dependabot!2412		23 hours ago
.devcontainer	Refactor dependency vulnerability fetching	2 months ago
.gitlab	Compile assets in forked pipelines	5 days ago
app	Add divider to projects page	4 days ago
bin	chore: testing improvements	3 years ago
config	Move sidekiq alive queue clearing to separate handler	2 weeks ago
db	Remove rubocop/rails rules introduced in latest versions	1 week ago
deploy	Bump hashicorp/google from 4.81.0 to 4.82.0 in /deploy	4 days ago
docs	Do not load metrics code in worker containers	3 weeks ago
images	doc: add gitlab logo	2 years ago
kube	chore: remove sidekiq-healthcheck script	2 years ago
lib	Remove puma metrics and direct metrics store	3 weeks ago
log	Start script improvements, docker startup fixes	3 years ago
public	chore: update favicon	3 years ago
script	Add docker-compose deploy test	1 year ago
spec	Reimplement obsolete merge requests closing	2 weeks ago
tmp	Start script improvements, docker startup fixes	3 years ago
.dockerignore	[BREAKING] Add support for per-ecosystem docker images	6 months ago
.gitattributes	Add .giattributes file	8 months ago
.gitignore	Fix devcontainer setup	3 months ago
.gitlab-ci.yml	Remove legacy license scanning job	1 month ago
.pre-commit-config.yaml	Use separate set block for imagePattern value	4 months ago
.prettierrc	Use playwright for E2E testing	4 months ago
.pryrc	Revert transition to debug gem	4 months ago
.reek.yml	Refactor api implementation to use grape framework	4 months ago
.rspec	Refactor api implementation to use grape framework	4 months ago
.rubocop.yml	Remove rubocop/rails rules introduced in latest versions	1 week ago
.ruby-version	Bump ruby dev version to 3.1.4	5 months ago
.simplecov	Add manual rake task to trigger automatic project registration	1 year ago
.solargraph.yml	Add solargraph rails support	9 months ago
CHANGELOG.md	Add changelog for version 3.3.0-alpha.1	1 week ago
CONTRIBUTING.md	Update contribution info	2 months ago
Dockerfile.core	Update docker Docker tag to v24.0.6	4 days ago
Dockerfile.ecosystem	Refactor dependency vulnerability fetching	2 months ago
Gemfile	Bump puma from 6.3.1 to 6.4.0	23 hours ago
Gemfile.lock	Bump puma from 6.3.1 to 6.4.0	23 hours ago
LICENSE	Fixup LICENSE text formatting	11 months ago
README.md	Update readme with information on release versioning	2 weeks ago
Rakefile	Add testing rake tasks	1 year ago
config.ru	Setup rubocop	3 years ago
docker-compose.yml	Add more information about mounting volumes inside the updater	5 days ago
package-lock.json	Bump @types/js-yaml from 4.0.5 to 4.0.6	4 days ago
package.json	Bump @types/js-yaml from 4.0.5 to 4.0.6	4 days ago
playwright.config.ts	Use project dependencies for global setup in e2e tests	1 month ago
renovate.json	Update renovate.json	2 weeks ago

README.md

dependabot-gitlab

⚠️ This project is not affiliated with, funded by, or maintained by the Dependabot team, GitHub or GitLab ⚠️

This software is Work in Progress: features will appear and disappear, API will be changed, bugs will be introduced, your feedback is always welcome!

dependabot-gitlab is an application that orchestrates dependabot-core library to create dependency update merge requests for GitLab projects. This repository does not contain any code related to dependency update logic, it only provides a way to run dependabot-core in a GitLab environment.

Documentation

Application documentation can be found at https://dependabot-gitlab.gitlab.io/dependabot

Release versioning

Application versioning follows Semantic Versioning specification but with alpha suffix to indicate that application as whole is not considered stable yet.