Bump puma from 6.3.1 to 6.4.0 See merge request dependabot-gitlab/dependabot!2412 |
23 hours ago | |
---|---|---|
.devcontainer | 2 months ago | |
.gitlab | 5 days ago | |
app | 4 days ago | |
bin | 3 years ago | |
config | 2 weeks ago | |
db | 1 week ago | |
deploy | 4 days ago | |
docs | 3 weeks ago | |
images | 2 years ago | |
kube | 2 years ago | |
lib | 3 weeks ago | |
log | 3 years ago | |
public | 3 years ago | |
script | 1 year ago | |
spec | 2 weeks ago | |
tmp | 3 years ago | |
.dockerignore | 6 months ago | |
.gitattributes | 8 months ago | |
.gitignore | 3 months ago | |
.gitlab-ci.yml | 1 month ago | |
.pre-commit-config.yaml | 4 months ago | |
.prettierrc | 4 months ago | |
.pryrc | 4 months ago | |
.reek.yml | 4 months ago | |
.rspec | 4 months ago | |
.rubocop.yml | 1 week ago | |
.ruby-version | 5 months ago | |
.simplecov | 1 year ago | |
.solargraph.yml | 9 months ago | |
CHANGELOG.md | 1 week ago | |
CONTRIBUTING.md | 2 months ago | |
Dockerfile.core | 4 days ago | |
Dockerfile.ecosystem | 2 months ago | |
Gemfile | 23 hours ago | |
Gemfile.lock | 23 hours ago | |
LICENSE | 11 months ago | |
README.md | 2 weeks ago | |
Rakefile | 1 year ago | |
config.ru | 3 years ago | |
docker-compose.yml | 5 days ago | |
package-lock.json | 4 days ago | |
package.json | 4 days ago | |
playwright.config.ts | 1 month ago | |
renovate.json | 2 weeks ago |
README.md
dependabot-gitlab
⚠️ This project is not affiliated with, funded by, or maintained by the Dependabot team, GitHub or GitLab ⚠️
This software is Work in Progress: features will appear and disappear, API will be changed, bugs will be introduced, your feedback is always welcome!
dependabot-gitlab
is an application that orchestrates dependabot-core library to create dependency update merge requests for GitLab projects. This repository does not contain any code related to dependency update logic, it only provides a way to run dependabot-core in a GitLab environment.
Documentation
Application documentation can be found at https://dependabot-gitlab.gitlab.io/dependabot
Release versioning
Application versioning follows Semantic Versioning specification but with alpha
suffix to indicate that application as whole is not considered stable yet.
MAJOR
version is bumped when breaking changes are introduced.MINOR
version is bumped when new features are added.PATCH
version is bumped when bugs are fixed.
Docker images
Core application image
Ecosystem updater images
Changelog
Detailed changes for releases can be found in CHANGELOG file or on Releases page
Contribution
- Take a look at contribution guidelines
Support
If you find this project useful, you can help me cover hosting costs of my dependabot-gitlab
test instance: