Releases: dependabot/dependabot-core
Releases · dependabot/dependabot-core
v0.218.0
What's Changed
- Cleanup leftover require by @deivid-rodriguez in #7162
- Cleanup duplicated conditions by @deivid-rodriguez in #7161
- Don't run update checker unnecessarily on all javascript packages in a monorepo by @deivid-rodriguez in #7141
- Prepare yarn berry just once by @deivid-rodriguez in #7160
- build(deps): bump Elixir to 1.14.4 by @yeikel in #7151
- Cargo: handle unsupported toolchain versions (part 2) by @jakecoffman in #7168
- It's
bug_tracker_uri
notissue_tracker_uri
by @jeffwidman in #7165 - Switch from
Changelog.md
to GitHub releases by @jeffwidman in #7163 - No need for
--dry-run
by @jeffwidman in #7164 - Update docs with current release process by @jeffwidman in #7169
- build(deps): bump Yarn from 3.4.1 to 3.5.0 by @yeikel in #7149
- Pass the serialized group name when creating a PR for grouped updates by @Nishnha in #7166
- [Updater] Ensure we pass all dependency files into each step in a grouped update by @brrygrdn in #7170
- NPM: fix npmrc generation for v3 package-locks by @jakecoffman in #7175
- docs: add information about where to find Terraform updates and how to validate the release by @yeikel in #7176
- Improve npm instrumentation by @deivid-rodriguez in #7177
- Merge workflows that push images by @deivid-rodriguez in #6681
- Clarify the
images-latest
workflow by @jeffwidman in #7180 - Pass exception message directly to peer dependency error handler by @deivid-rodriguez in #7178
- build(deps): bump Terraform to 1.4.6 by @yeikel in #7181
- Remove accidentally committed node_modules folders by @deivid-rodriguez in #7172
- Refactor workspace file fetching in npm by @deivid-rodriguez in #7183
- NPM: handle EBADENGINE better by @jakecoffman in #7194
- Improve naming of a method by @deivid-rodriguez in #7197
- Clarify comments on peer dependency error regexes by @deivid-rodriguez in #7195
- remove unused script by @jakecoffman in #7205
- Fix README.md formatting error by @JonathanBerkeley in #7193
- Remove unused requires by @deivid-rodriguez in #7200
- Catch
bundle lock
failures by @jeffwidman in #7208 - Pass required method argument in
GroupUpdateAllVersions
updater operation by @bdragon in #7202 - Do not catch the
0
exit code by @jeffwidman in #7209 - Remove unused
GH_TOKEN
env var by @jeffwidman in #7207 - [Updater] Fix brittle test for grouped updates by @brrygrdn in #7213
- Remove Updater#legacy_run by @brrygrdn in #7212
- [Updater] Implement an Operation capable of refreshing a Grouped Update PR. by @brrygrdn in #7192
- Add PNPM support by @deivid-rodriguez in #7081
- Remove dead code by @deivid-rodriguez in #7218
- Add a placeholder
dependabot-core.gemspec
by @jeffwidman in #7171 - Pin docker_registry2 to 1.14.0 to fix CI by @deivid-rodriguez in #7224
- prebuild Python image for faster Codespace startup by @jakecoffman in #7225
- Create version bump PRs using a custom action by @jeffwidman in #7211
- [Updater] The Updater always expects job.dependency_groups to be defined by @brrygrdn in #7216
- [Updater] Add a test for two overlapping groups by @brrygrdn in #7217
- Fix Dependabot failing to create PRs when updates are needed on path gemspecs by @deivid-rodriguez in #7227
- Remove unnecessary usages of VCR by @deivid-rodriguez in #7233
- Don't link to empty releases page in PR body by @deivid-rodriguez in #7118
- Remove references to removed file by @deivid-rodriguez in #7236
- Fix updating GitHub Actions pinned to mixed references by @deivid-rodriguez in #7215
- Make
gem-bump-version
inheritruby
/bundler
versions by @jeffwidman in #7239 - Fix flaky cargo spec by @deivid-rodriguez in #7243
- Less truncation in RSpec errors by @deivid-rodriguez in #7244
- Fix
lockfile-only
versioning strategy not creating some updates that are expected (v2) by @deivid-rodriguez in #5902 - Add tag to indicate if repo is private in sentry reports by @jurre in #7228
- Defer opening duplicate grouped PRs by @Nishnha in #7199
- [Updater] Explain why we defer groups with existing PRs when all groups are triggered by @brrygrdn in #7255
- [Updater] Add missing log lines to job startup by @brrygrdn in #7264
- Generate PR intro for grouped update PRs by @bdragon in #7247
- [Updater] Fix a bug in how we handle 'peer' manifests by @brrygrdn in #7268
- build(deps): bump GOLANG from 1.20.3 to 1.20.4 by @yeikel in #7259
- Re-enable e2e test by @bdragon in #7270
- Fix some bad PRs getting created when compact index API is having issues by @deivid-rodriguez in #7269
- Pin CodeQL action by @deivid-rodriguez in #7275
- Update Bundler to 2.4.13 by @deivid-rodriguez in #7274
- fix NilClass error on credential-less runs by @jakecoffman in #7277
- [Updater] Fix a crash in Grouped Updates when vendoring files by @brrygrdn in #7285
- Fix outdated reference to DockerHub by @jeffwidman in #7271
- Switch to watching releases rather than tags by @jeffwidman in #7272
- build(deps): bump Rust from 1.68.2 to 1.69.0 by @yeikel in #7280
- Reparse dependencies after each batch when performing grouped updates by @Nishnha in #7276
- Don't hang when metadata source is not accessible by @deivid-rodriguez in #7241
- Avoid a method missing error distracting when we hit any unhandled exceptions by @brrygrdn in #7287
- Go: fix grouped updates missing updated dependencies in manifests by @jakecoffman in #7288
- Roll changes from pub. by @sigurdm in #7265
- Add basic smoke test for PNPM by @deivid-rodriguez in #7281
- Remove unused code by @deivid-rodriguez in #7279
- fix(gradle): update dependencies only if group and artifact ids are the same by @yeikel in #7145
- Revert "fix(gradle): update dependencies only if both group and artifact ids are the same" by @deivid-rodriguez in #7304
- CodeQL: ignore purposefully invalid ruby files by @jeffwidman in #7126
- [Grouped Updates] Remove prototype from branch names by @brrygrdn in #7297
- docs: improve documentation by @yeikel in #7328
- Ensure we start from `...