[HDDS-10686] Only bump npm packages for security - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.0.0
Component/s: CI
Labels:
- pull-request-available

Target Version/s:

2.0.0

Description

Disable dependabot's eager minor/patch version upgrades for npm, restoring the default behavior of creating PRs for security fixes.

Attachments

Issue Links

links to

GitHub Pull Request #6522

Activity

People

Assignee:: Attila Doroszlai

Reporter:: Attila Doroszlai

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 12/Apr/24 15:37

Updated:: 16/Apr/24 18:36

Resolved:: 16/Apr/24 17:21