You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
Go to file
dependabot-bot d6c91e223a Merge branch 'dependabot-bundler-puma-6.4.0' into 'main'
Bump puma from 6.3.1 to 6.4.0

See merge request dependabot-gitlab/dependabot!2412
23 hours ago
.devcontainer Refactor dependency vulnerability fetching 2 months ago
.gitlab Compile assets in forked pipelines 5 days ago
app Add divider to projects page 4 days ago
bin chore: testing improvements 3 years ago
config Move sidekiq alive queue clearing to separate handler 2 weeks ago
db Remove rubocop/rails rules introduced in latest versions 1 week ago
deploy Bump hashicorp/google from 4.81.0 to 4.82.0 in /deploy 4 days ago
docs Do not load metrics code in worker containers 3 weeks ago
images doc: add gitlab logo 2 years ago
kube chore: remove sidekiq-healthcheck script 2 years ago
lib Remove puma metrics and direct metrics store 3 weeks ago
log Start script improvements, docker startup fixes 3 years ago
public chore: update favicon 3 years ago
script Add docker-compose deploy test 1 year ago
spec Reimplement obsolete merge requests closing 2 weeks ago
tmp Start script improvements, docker startup fixes 3 years ago
.dockerignore [BREAKING] Add support for per-ecosystem docker images 6 months ago
.gitattributes Add .giattributes file 8 months ago
.gitignore Fix devcontainer setup 3 months ago
.gitlab-ci.yml Remove legacy license scanning job 1 month ago
.pre-commit-config.yaml Use separate set block for imagePattern value 4 months ago
.prettierrc Use playwright for E2E testing 4 months ago
.pryrc Revert transition to debug gem 4 months ago
.reek.yml Refactor api implementation to use grape framework 4 months ago
.rspec Refactor api implementation to use grape framework 4 months ago
.rubocop.yml Remove rubocop/rails rules introduced in latest versions 1 week ago
.ruby-version Bump ruby dev version to 3.1.4 5 months ago
.simplecov Add manual rake task to trigger automatic project registration 1 year ago
.solargraph.yml Add solargraph rails support 9 months ago
CHANGELOG.md Add changelog for version 3.3.0-alpha.1 1 week ago
CONTRIBUTING.md Update contribution info 2 months ago
Dockerfile.core Update docker Docker tag to v24.0.6 4 days ago
Dockerfile.ecosystem Refactor dependency vulnerability fetching 2 months ago
Gemfile Bump puma from 6.3.1 to 6.4.0 23 hours ago
Gemfile.lock Bump puma from 6.3.1 to 6.4.0 23 hours ago
LICENSE Fixup LICENSE text formatting 11 months ago
README.md Update readme with information on release versioning 2 weeks ago
Rakefile Add testing rake tasks 1 year ago
config.ru Setup rubocop 3 years ago
docker-compose.yml Add more information about mounting volumes inside the updater 5 days ago
package-lock.json Bump @types/js-yaml from 4.0.5 to 4.0.6 4 days ago
package.json Bump @types/js-yaml from 4.0.5 to 4.0.6 4 days ago
playwright.config.ts Use project dependencies for global setup in e2e tests 1 month ago
renovate.json Update renovate.json 2 weeks ago

README.md

dependabot-gitlab

⚠️ This project is not affiliated with, funded by, or maintained by the Dependabot team, GitHub or GitLab ⚠️

This software is Work in Progress: features will appear and disappear, API will be changed, bugs will be introduced, your feedback is always welcome!

dependabot-gitlab is an application that orchestrates dependabot-core library to create dependency update merge requests for GitLab projects. This repository does not contain any code related to dependency update logic, it only provides a way to run dependabot-core in a GitLab environment.

Documentation

Application documentation can be found at https://dependabot-gitlab.gitlab.io/dependabot

Release versioning

Application versioning follows Semantic Versioning specification but with alpha suffix to indicate that application as whole is not considered stable yet.

  • MAJOR version is bumped when breaking changes are introduced.
  • MINOR version is bumped when new features are added.
  • PATCH version is bumped when bugs are fixed.

Docker images

Core application image

  • pulls size

Ecosystem updater images

  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size
  • pulls size

Changelog

Detailed changes for releases can be found in CHANGELOG file or on Releases page

Contribution

Support

If you find this project useful, you can help me cover hosting costs of my dependabot-gitlab test instance:

ko-fi