From 1e930a70b296d999b1746c0a798a6d9def55e297 Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Thu, 29 Apr 2021 20:31:42 +0000 Subject: [PATCH] Upgrade to GitHub-native Dependabot --- .github/dependabot.yml | 37 +++++++++++++++++++++++++++++++++++++ 1 file changed, 37 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..99c05d70 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,37 @@ +version: 2 +registries: + npm-registry-npm-pkg-github-com: + type: npm-registry + url: https://npm.pkg.github.com + token: "${{secrets.NPM_REGISTRY_NPM_PKG_GITHUB_COM_TOKEN}}" + +updates: +- package-ecosystem: npm + directory: "/" + schedule: + interval: monthly + open-pull-requests-limit: 10 + ignore: + - dependency-name: npm-check-updates + versions: + - 10.2.5 + - 11.1.1 + - dependency-name: ts-jest + versions: + - 26.4.4 + - 26.5.0 + - dependency-name: "@types/node" + versions: + - 14.14.17 + - 14.14.22 + - dependency-name: "@types/jest" + versions: + - 26.0.19 + - dependency-name: lodash + versions: + - 4.17.20 + - dependency-name: typescript + versions: + - 3.9.7 + registries: + - npm-registry-npm-pkg-github-com