mirror of
https://github.com/dependabot/fetch-metadata.git
synced 2026-03-12 18:07:12 -04:00
v1.3.3
This commit is contained in:
David McIntosh
10
README.md
10
README.md
@@ -10,7 +10,7 @@ Extract information about the dependencies being updated by a Dependabot-generat
|
||||
|
||||
## Usage instructions
|
||||
|
||||
Create a workflow file that contains a step that uses: `dependabot/fetch-metadata@v1.3.2`, e.g.
|
||||
Create a workflow file that contains a step that uses: `dependabot/fetch-metadata@v1.3.3`, e.g.
|
||||
|
||||
```yaml
|
||||
-- .github/workflows/dependabot-prs.yml
|
||||
@@ -22,7 +22,7 @@ jobs:
|
||||
steps:
|
||||
- name: Fetch Dependabot metadata
|
||||
id: dependabot-metadata
|
||||
uses: dependabot/fetch-metadata@v1.3.2
|
||||
uses: dependabot/fetch-metadata@v1.3.3
|
||||
with:
|
||||
alert-lookup: true
|
||||
compat-lookup: true
|
||||
@@ -98,7 +98,7 @@ jobs:
|
||||
steps:
|
||||
- name: Dependabot metadata
|
||||
id: dependabot-metadata
|
||||
uses: dependabot/fetch-metadata@v1.3.2
|
||||
uses: dependabot/fetch-metadata@v1.3.3
|
||||
- uses: actions/checkout@v3
|
||||
- name: Approve a PR if not already approved
|
||||
run: |
|
||||
@@ -132,7 +132,7 @@ jobs:
|
||||
steps:
|
||||
- name: Dependabot metadata
|
||||
id: dependabot-metadata
|
||||
uses: dependabot/fetch-metadata@v1.3.2
|
||||
uses: dependabot/fetch-metadata@v1.3.3
|
||||
- name: Enable auto-merge for Dependabot PRs
|
||||
if: ${{contains(steps.dependabot-metadata.outputs.dependency-names, 'rails') && steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch'}}
|
||||
run: gh pr merge --auto --merge "$PR_URL"
|
||||
@@ -161,7 +161,7 @@ jobs:
|
||||
steps:
|
||||
- name: Dependabot metadata
|
||||
id: dependabot-metadata
|
||||
uses: dependabot/fetch-metadata@v1.3.2
|
||||
uses: dependabot/fetch-metadata@v1.3.3
|
||||
- name: Add a label for all production dependencies
|
||||
if: ${{ steps.dependabot-metadata.outputs.dependency-type == 'direct:production' }}
|
||||
run: gh pr edit "$PR_URL" --add-label "production"
|
||||
|
||||
4
package-lock.json
generated
4
package-lock.json
generated
@@ -1,12 +1,12 @@
|
||||
{
|
||||
"name": "dependabot-pull-request-action",
|
||||
"version": "1.3.2",
|
||||
"version": "1.3.3",
|
||||
"lockfileVersion": 2,
|
||||
"requires": true,
|
||||
"packages": {
|
||||
"": {
|
||||
"name": "dependabot-pull-request-action",
|
||||
"version": "1.3.2",
|
||||
"version": "1.3.3",
|
||||
"license": "MIT",
|
||||
"dependencies": {
|
||||
"@actions/core": "^1.6.0",
|
||||
|
||||
@@ -1,6 +1,6 @@
|
||||
{
|
||||
"name": "dependabot-pull-request-action",
|
||||
"version": "1.3.2",
|
||||
"version": "1.3.3",
|
||||
"description": "Parse Dependabot commit metadata to automate PR handling",
|
||||
"main": "dist/index.js",
|
||||
"scripts": {
|
||||
|
||||
Reference in New Issue
Block a user