This is an automated email from the ASF dual-hosted git repository.
pkarwasz pushed a commit to branch release-2.x
in repository https://gitbox.apache.org/repos/asf/logging-log4j2.git
The following commit(s) were added to refs/heads/release-2.x by this push:
new ecd2d77830 Increase to 50 dependabot proposals
ecd2d77830 is described below
commit ecd2d7783090683d3b7ba0ceb26e5c953f5c5a44
Author: ppkarwasz <[email protected]>
AuthorDate: Mon May 23 18:10:09 2022 +0200
Increase to 50 dependabot proposals
We have 38 upgradeable dependencies. In order to limit the annoyance from
Dependabot PRs, I propose to limit the number of `test` scope upgrade proposals
to 10 and to give a larger number (50) for the remaining ones.
Another solution would be to prioritize the number of upgrade proposals for
`log4j-api` and `log4j-core` and limit those for the remaining modules.
---
.github/dependabot.yml | 10 +++++++++-
1 file changed, 9 insertions(+), 1 deletion(-)
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index d0e9890e77..e8514561a2 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -16,9 +16,17 @@
#
version: 2
updates:
+# No more than 10 PRs for dependencies with a `test` scope
- package-ecosystem: maven
directory: "/"
schedule:
interval: daily
- time: '04:00'
+ allow: development
open-pull-requests-limit: 10
+# 50 PRs for the remaining dependencies (`compile` and Maven plugins)
+- package-ecosystem: maven
+ directory: "/"
+ schedule:
+ interval: daily
+ allow: production
+ open-pull-requests-limit: 50
