Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix Dependabot security group schema #10589

Merged
merged 1 commit into from
May 10, 2024
Merged

Fix Dependabot security group schema #10589

merged 1 commit into from
May 10, 2024

Conversation

aduth
Copy link
Contributor

@aduth aduth commented May 10, 2024

🛠 Summary of changes

Continues to attempt to fix Dependabot configuration issues introduced in #10576:

The property '#/updates/0/groups/security' of type object did not match one or more of the required schemas
The property '#/updates/1/groups/security' of type object did not match one or more of the required schemas

https://github.com/18F/identity-idp/runs/24825325838

Reference documentation: https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file#groups

You must use the patterns, exclude-patterns, dependency-type, or update-types options to define the group, or any combination thereof.

📜 Testing Plan

As before, it's not possible to test prior to merge (see dependabot/dependabot-core#4605).

At some point, I may abandon this and revert back to the configuration prior to #10576 if issues continue.

@aduth
Fix Dependabot security group schema
a3d09ca 
changelog: Internal, Security Tooling, Configure Dependabot for security updates, major Stylelint releases
@aduth
Copy link
Contributor Author

aduth commented May 10, 2024

Strangely, this pull request has a Dependabot check that I don't recall seeing in previous pull requests 🤔 At least this might be a good sign that the configuration is valid now?

image

@aduth aduth merged commit 1b72029 into main May 10, 2024
3 checks passed
@aduth aduth deleted the aduth-dependabot-security-schema branch May 10, 2024 15:39
@amirbey amirbey mentioned this pull request May 14, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zachmargolis zachmargolis zachmargolis approved these changes

@mitchellhenke mitchellhenke mitchellhenke approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@aduth @zachmargolis @mitchellhenke