New check - Use of tools that update deps like dependabot #179

naveensrinivasan · 2021-02-14T18:47:54Z

Check if the dependabot is turned on the repository. This helps to identify any vulnerabilities on the project's dependencies.

vin01 · 2021-02-23T12:46:53Z

Perhaps this should be a general category for automatic dependency updates, also supporting popular tools like Renovate for dependency updates: https://github.com/renovatebot/renovate

naveensrinivasan · 2021-06-04T14:48:35Z

closing it #322

naveensrinivasan added the help wanted Community contributions welcome, maintainers supportive of idea but not a high priority label Feb 16, 2021

inferno-chromium changed the title ~~New check - dependabot~~ New check - Use of tools that update deps like dependabot Mar 22, 2021

inferno-chromium added core feature priority/must-do Upcoming release labels Mar 22, 2021

naveensrinivasan self-assigned this Apr 2, 2021

naveensrinivasan mentioned this issue Apr 2, 2021

✨ Automatic dependency update checks #322

Merged

2 tasks

laurentsimon added this to the milestone-q2 milestone May 11, 2021

naveensrinivasan closed this as completed Jun 4, 2021

This issue was closed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

New check - Use of tools that update deps like dependabot #179

New check - Use of tools that update deps like dependabot #179

naveensrinivasan commented Feb 14, 2021

vin01 commented Feb 23, 2021

naveensrinivasan commented Jun 4, 2021

New check - Use of tools that update deps like dependabot #179

New check - Use of tools that update deps like dependabot #179

Comments

naveensrinivasan commented Feb 14, 2021

vin01 commented Feb 23, 2021

naveensrinivasan commented Jun 4, 2021