From 060941402ff1e9bb2a6e8e0e50e61b2da1ed7acb Mon Sep 17 00:00:00 2001 From: Bharath Date: Fri, 25 Oct 2024 13:00:18 +1300 Subject: [PATCH 1/3] chore: auto approve minor dependency upgrades (#77) --- .github/workflows/dependabot-automation.yml | 28 +++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 .github/workflows/dependabot-automation.yml diff --git a/.github/workflows/dependabot-automation.yml b/.github/workflows/dependabot-automation.yml new file mode 100644 index 0000000..e721b42 --- /dev/null +++ b/.github/workflows/dependabot-automation.yml @@ -0,0 +1,28 @@ +name: Dependabot automation +on: pull_request + +permissions: + contents: write + pull-requests: write + +jobs: + dependabot: + runs-on: ubuntu-latest + if: github.actor == 'dependabot[bot]' + steps: + - name: Dependabot metadata + id: metadata + uses: dependabot/fetch-metadata@dbb049abf0d677abbd7f7eee0375145b417fdd34 # v2.2.0 + with: + github-token: "${{ secrets.GITHUB_TOKEN }}" + - name: Approve PR + run: gh pr review --approve "$PR_URL" + env: + PR_URL: ${{github.event.pull_request.html_url}} + GITHUB_TOKEN: ${{secrets.STEP_GITHUB_ACTION_TOKEN}} + - name: Enable auto-merge for Dependabot PRs that doesn't include major version update + if: steps.metadata.outputs.update-type != 'version-update:semver-major' + run: gh pr merge --auto --squash "$PR_URL" + env: + PR_URL: ${{github.event.pull_request.html_url}} + GITHUB_TOKEN: ${{secrets.STEP_GITHUB_ACTION_TOKEN}} From c31b4692213cdc0d03a923b3ff4c90ff7428dbcb Mon Sep 17 00:00:00 2001 From: Bharath Date: Wed, 30 Oct 2024 09:04:31 +1300 Subject: [PATCH 2/3] chore: remove dependabot auto approve (#81) --- .github/workflows/dependabot-automation.yml | 28 --------------------- 1 file changed, 28 deletions(-) delete mode 100644 .github/workflows/dependabot-automation.yml diff --git a/.github/workflows/dependabot-automation.yml b/.github/workflows/dependabot-automation.yml deleted file mode 100644 index e721b42..0000000 --- a/.github/workflows/dependabot-automation.yml +++ /dev/null @@ -1,28 +0,0 @@ -name: Dependabot automation -on: pull_request - -permissions: - contents: write - pull-requests: write - -jobs: - dependabot: - runs-on: ubuntu-latest - if: github.actor == 'dependabot[bot]' - steps: - - name: Dependabot metadata - id: metadata - uses: dependabot/fetch-metadata@dbb049abf0d677abbd7f7eee0375145b417fdd34 # v2.2.0 - with: - github-token: "${{ secrets.GITHUB_TOKEN }}" - - name: Approve PR - run: gh pr review --approve "$PR_URL" - env: - PR_URL: ${{github.event.pull_request.html_url}} - GITHUB_TOKEN: ${{secrets.STEP_GITHUB_ACTION_TOKEN}} - - name: Enable auto-merge for Dependabot PRs that doesn't include major version update - if: steps.metadata.outputs.update-type != 'version-update:semver-major' - run: gh pr merge --auto --squash "$PR_URL" - env: - PR_URL: ${{github.event.pull_request.html_url}} - GITHUB_TOKEN: ${{secrets.STEP_GITHUB_ACTION_TOKEN}} From 88dc448e2f7a7865426d5c8ef263bb4244598ee6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 Nov 2024 16:24:09 +1300 Subject: [PATCH 3/3] build(deps-dev): bump @types/node from 22.7.5 to 22.8.7 (#86) Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package-lock.json | 10 +++++----- package.json | 2 +- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index 183ba3b..e408496 100644 --- a/package-lock.json +++ b/package-lock.json @@ -9,7 +9,7 @@ "version": "1.7.0", "devDependencies": { "@linzjs/style": "^5.4.0", - "@types/node": "^22.7.5" + "@types/node": "^22.8.7" }, "engines": { "node": ">=18.0" @@ -248,12 +248,12 @@ } }, "node_modules/@types/node": { - "version": "22.7.5", - "resolved": "https://registry.npmjs.org/@types/node/-/node-22.7.5.tgz", - "integrity": "sha512-jML7s2NAzMWc//QSJ1a3prpk78cOPchGvXJsC3C6R6PSMoooztvRVQEz89gmBTBY1SPMaqo5teB4uNHPdetShQ==", + "version": "22.8.7", + "resolved": "https://registry.npmjs.org/@types/node/-/node-22.8.7.tgz", + "integrity": "sha512-LidcG+2UeYIWcMuMUpBKOnryBWG/rnmOHQR5apjn8myTQcx3rinFRn7DcIFhMnS0PPFSC6OafdIKEad0lj6U0Q==", "dev": true, "dependencies": { - "undici-types": "~6.19.2" + "undici-types": "~6.19.8" } }, "node_modules/@typescript-eslint/eslint-plugin": { diff --git a/package.json b/package.json index c7e824b..b71958b 100644 --- a/package.json +++ b/package.json @@ -32,6 +32,6 @@ }, "devDependencies": { "@linzjs/style": "^5.4.0", - "@types/node": "^22.7.5" + "@types/node": "^22.8.7" } }