diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 853bc0a13..b408e2a97 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -1,22 +1,28 @@ -# To get started with Dependabot version updates, you'll need to specify which -# package ecosystems to update and where the package manifests are located. -# Please see the documentation for all configuration options: -# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file +# Basic `dependabot.yml` file with +# minimum configuration for three package managers version: 2 updates: # Enable version updates for npm - - package-ecosystem: 'npm' + - package-ecosystem: "npm" # Look for `package.json` and `lock` files in the `root` directory - directory: '/' + directory: "/" # Check the npm registry for updates every day (weekdays) schedule: - interval: 'weekly' + interval: "daily" + + # Enable version updates for Docker + - package-ecosystem: "docker" + # Look for a `Dockerfile` in the `root` directory + directory: "/" + # Check for updates once a week + schedule: + interval: "daily" # Enable version updates for GitHub Actions - - package-ecosystem: 'github-actions' + - package-ecosystem: "github-actions" # Workflow files stored in the default location of `.github/workflows` # You don't need to specify `/.github/workflows` for `directory`. You can use `directory: "/"`. - directory: '/' + directory: "/" schedule: - interval: 'weekly' + interval: "weekly" diff --git a/package-lock.json b/package-lock.json index 336c19e70..545ced4f5 100644 --- a/package-lock.json +++ b/package-lock.json @@ -16,13 +16,13 @@ "@actions/http-client": "^2.2.3", "@actions/io": "^1.0.2", "@actions/tool-cache": "^2.0.1", - "semver": "^7.6.0", + "semver": "^7.7.2", "xmlbuilder2": "^2.4.0" }, "devDependencies": { "@types/jest": "^29.5.14", "@types/node": "^24.1.0", - "@types/semver": "^7.5.8", + "@types/semver": "^7.7.0", "@typescript-eslint/eslint-plugin": "^8.35.1", "@typescript-eslint/parser": "^8.35.1", "@vercel/ncc": "^0.38.1", @@ -1680,10 +1680,11 @@ } }, "node_modules/@types/semver": { - "version": "7.5.8", - "resolved": "https://registry.npmjs.org/@types/semver/-/semver-7.5.8.tgz", - "integrity": "sha512-I8EUhyrgfLrcTkzV3TSsGyl1tSuPrEDzr0yd5m90UgNxQkyDXULk3b6MlQqTCpZpNtWe1K0hzclnZkTcLBe2UQ==", - "dev": true + "version": "7.7.0", + "resolved": "https://registry.npmjs.org/@types/semver/-/semver-7.7.0.tgz", + "integrity": "sha512-k107IF4+Xr7UHjwDc7Cfd6PRQfbdkiRabXGRjo07b4WyPahFBZCZ1sE+BNxYIJPPg73UkfOsVOLwqVc/6ETrIA==", + "dev": true, + "license": "MIT" }, "node_modules/@types/stack-utils": { "version": "2.0.3", @@ -5138,9 +5139,9 @@ "integrity": "sha512-0s+oAmw9zLl1V1cS9BtZN7JAd0cW5e0QH4W3LWEK6a4LaLEA2OTpGYWDY+6XasBLtz6wkm3u1xRw95mRuJ59WA==" }, "node_modules/semver": { - "version": "7.7.1", - "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.1.tgz", - "integrity": "sha512-hlq8tAfn0m/61p4BVRcPzIGr6LKiMwo4VM6dGi6pt4qcRkmNzTcWq6eCEjEh+qXjkMDvPlOFFSGwQjoEa6gyMA==", + "version": "7.7.2", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.2.tgz", + "integrity": "sha512-RF0Fw+rO5AMf9MAyaRXI4AV0Ulj5lMHqVxxdSgiVbixSCXoEmmX/jk0CuJw4+3SqroYO9VoUh+HcuJivvtJemA==", "license": "ISC", "bin": { "semver": "bin/semver.js" diff --git a/package.json b/package.json index bccf03214..5eab02289 100644 --- a/package.json +++ b/package.json @@ -36,13 +36,13 @@ "@actions/http-client": "^2.2.3", "@actions/io": "^1.0.2", "@actions/tool-cache": "^2.0.1", - "semver": "^7.6.0", + "semver": "^7.7.2", "xmlbuilder2": "^2.4.0" }, "devDependencies": { "@types/jest": "^29.5.14", "@types/node": "^24.1.0", - "@types/semver": "^7.5.8", + "@types/semver": "^7.7.0", "@typescript-eslint/eslint-plugin": "^8.35.1", "@typescript-eslint/parser": "^8.35.1", "@vercel/ncc": "^0.38.1",