aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authornaveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>2022-03-19 00:06:19 +0000
committernaveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>2022-03-19 03:15:16 +0000
commit4408db3303edb354b109d07b94f15a1389d604f8 (patch)
tree9369c4158ef884a47f968527e254db056e6e634b
parentc2eae35c606382418c6e2ce57c4ab874f1975f21 (diff)
downloadpodman-4408db3303edb354b109d07b94f15a1389d604f8.tar.gz
podman-4408db3303edb354b109d07b94f15a1389d604f8.tar.bz2
podman-4408db3303edb354b109d07b94f15a1389d604f8.zip
Updated dependabot to GitHub actions
- Updated dependabot to get updates for GitHub actions. GitHub sends Dependabot alerts when we detect vulnerabilities affecting your repository as well as when there are new updates to the dependency. https://docs.github.com/en/code-security/dependabot/dependabot-alerts/about-dependabot-alerts A vulnerability is a problem in a project's code that could be exploited to damage the confidentiality, integrity, or availability of the project or other projects that use its code. Vulnerabilities vary in type, severity, and method of attack. When your code depends on a package that has a security vulnerability, this vulnerable dependency can cause a range of problems for your project or the people who use it. Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
-rw-r--r--.github/dependabot.yml5
1 files changed, 5 insertions, 0 deletions
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index d921d0ffd..86f8c4aaf 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -5,3 +5,8 @@ updates:
schedule:
interval: daily
open-pull-requests-limit: 10
+- package-ecosystem: "github-actions"
+ directory: "/"
+ schedule:
+ interval: "daily"
+ open-pull-requests-limit: 10