dependabot/dependabot-core

Issues

• Groups not being respected

  #13154 opened a month ago by gregauger
  9

• Dependabot can't resolve your JavaScript dependency files

  #13030 opened 2 months ago by joao-dias-tma
  9

• Github Actions Update not Recreating PR

  #13133 opened a month ago by BenjaminMichaelis
  24

• Dependabot no longer resolves conflicts

  #13002 opened 2 months ago by alk-ktouchie
  4

• pnpm transitive dependency updates support

  #13177 opened a month ago by karlhorky
  0

• Address Sentry Issues In Dependabot Core

  #13170 opened a month ago by AbhishekBhaskar
  1

• Recovery Path Needed When Dependabot Fails

  #13157 opened a month ago by schmidtw
  1

• Perl 5 and 6

  #13090 opened 2 months ago by mcandre
  0

• Getting git_dependencies_not_reachable

  #13166 opened a month ago by stevehipwell
  1

• Dependabot cooldown conflict with pnpm-workspace.yaml minimumReleaseAge settings

  #13165 opened a month ago by szujak
  0

• Nominate additional branches for security updates

  #13095 opened 2 months ago by dkfellows
  2

• Document support for NPM v10

  #13159 opened 2 months ago by jansepke
  0

• Add support for NPM v11

  #13158 opened 2 months ago by jansepke
  0

• Dependabot for vcpkg opens an empty PR

  #13068 opened 2 months ago by bindreams
  0

• Update Poetry to version 2.1.4 to fix Python version selection bug

  #13038 opened 2 months ago by jutogashi
  2

• Job should fail or warn when using unsupported configuration options for an ecosystem

  #13121 opened 2 months ago by yeikel
  5

• Exclusion configuration not taken into account

  #13141 opened 2 months ago by ottlinger
  0

• Not following cronjob schedule with step syntax

  #13140 opened 2 months ago by cmenon12
  0

• Helm version class architecture

  #13130 opened 2 months ago by JamieMagee
  0

• Error: cooldown is not supported for the package ecosystem 'swift'.

  #13039 opened 2 months ago by zunda-pixel
  3

• When Maven dependency versions are specified by profiles, inconsistency when specified via property or as a direct dependency

  #13127 opened 2 months ago by JackPGreen
  0

• Add gradle support for the `dependency-type` grouping feature

  #13122 opened 2 months ago by yeikel
  0

• GitHub Actions cooldown should use release date instead of tag commit date

  #13078 opened 2 months ago by guitarrapc
  1

• add language version config option

  #13110 opened 2 months ago by sanderr
  0

• pipenv: env-var expanded source URLs cause undefined index in Pipfile.lock

  #13086 opened 2 months ago by AustinMatherne
  0

• "Dependabot encountered an unknown error" - undefined method 'name' for nil

  #13084 opened 2 months ago by deshack
  5

• All `uv.lock` packages are updated/downloaded from private index marked as `explicit`

  #13094 opened 2 months ago by mtvx
  0

• NuGet updater tries to build even though a dotnet restore and msbuild /t:Restore succeeds for the project

  #13080 opened 2 months ago by Cjewett
  3

• Bun: dependabot incorrectly updates the version as root when the value is `latest`

  #13092 opened 2 months ago by touhidurrr
  1

• Specify `plugins: rubocop-performance` instead of `require: rubocop-performance`

  #13079 opened 2 months ago by yeikel
  0

• cargo: dev-dependency update is marked as "dependency-type: direct:production"

  #13070 opened 2 months ago by martin-g
  0

• Support `podman` quadlet container files

  #13066 opened 2 months ago by JCQuintas
  0

• When updating GitHub actions, give an option to switch from version number to SHA

  #13048 opened 2 months ago by JayBazuzi
  1

• Add `vcpkg-configuration.json` to vcpkg project missing a baseline

  #13051 opened 2 months ago by JamieMagee
  0

• Dependabot update job correctly parses pnpm 10 version constraint, but installs pnpm 9 nonetheless

  #13045 opened 2 months ago by thunze
  0

• Invalid authentication with Yarn 4 and private scope

  #13043 opened 2 months ago by A1bi
  0

• Allow to sanitize commit messages "@" generate invalid commit messages for some projects

  #13042 opened 2 months ago by mimowo
  0

• bug(github_action): updating the sha does not update the version comment

  #13037 opened 2 months ago by axel7083
  1

• [Support] Dependabot to update base image in Dockerfiles

  #13027 opened 2 months ago by pealtrufo
  2

• Dependabot updates pnpm lockfile and changes settings, de-synchronizing from pnpm-workspace.yaml

  #13036 opened 2 months ago by Catatomik
  0

• Dependency (with inherited `url` properties) not matched to GH project and its RN

  #13031 opened 2 months ago by pzygielo
  1

• [Transitive updates experiment] Maven updater should update already declared dependency in parent file

  #13012 opened 2 months ago by ByAgenT
  2

• Use a more up-to-date version of git

  #13009 opened 2 months ago by JamieMagee
  2

• NuGet Updater uses wrong GitHub release in the pull request

  #13003 opened 2 months ago by twendt-nc
  2

• 400 Error when marking false positive with long discussion text

  #13019 opened 2 months ago by pavanghuge
  0

• Composer FileParser not working in sub-directories

  #13017 opened 2 months ago by deshack
  0

• Inconsistent Dependabot Updates

  #13016 opened 2 months ago by chrmarti
  0

• Dependabot not updating python packages via `uv`

  #13014 opened 2 months ago by anth1y
  0

• [Transitive updates experiment] Maven updater produces unrelated formatting changes when pinning dependency version

  #13011 opened 2 months ago by ByAgenT
  0

• Wrongly opens dedicated major update PR rather than include in minor/patch group PR

  #13000 opened 2 months ago by aurelticot
  0