github dependabot/dependabot-core v0.309.0

latest releases: v0.311.0, v0.310.0
20 days ago

What's Changed

  • Properly convert --requirements-update-strategy value to Enum by @noorul in #11340
  • Add PackageRelease Filtering for Security Vulnerability Check by @kbukum1 in #12038
  • Harry/reverting tool version not supported composer changes by @thavaahariharangit in #12051
  • Only sleep on errors by @jeffwidman in #12041
  • Standardize Maven Package Fetcher to Support Generic Package Release Details by @kbukum1 in #12022
  • Fix swift updater image build by @andrcuns in #12037
  • Refactor: Update Bundler Versioning to Use Bundler::Version Instead of Gem::Version by @kbukum1 in #12060
  • Sorbet: Update Returned Version Types for Generic PackageLatestVersionFinder by @kbukum1 in #12059
  • Bump Swift version from 6.0 to 6.1 by @jagreenwood in #12055
  • allow loading legacy code pages by @brettfo in #12053
  • prepopulate updater image with framework targeting packs by @brettfo in #12054
  • Don't return evaluation for temporary projects by @brettfo in #12056
  • Refactor: Consistent Filtering of Releases in PackageLatestVersionFinder by @kbukum1 in #12061
  • Don't import from special Pkg* properties by @brettfo in #12058
  • Bump nuget/helpers/lib/NuGet.Client from 7a84f1e to 95a470a by @dependabot in #11987
  • Strict type some more of composer by @JamieMagee in #12062
  • Strict type remaining files in maven ecosystem by @JamieMagee in #12069
  • Pass Cooldown and Extend Generic Version Finder for Maven Ecosystem by @kbukum1 in #12065
  • maintain BOM status for dependency files by @brettfo in #12079
  • Enforce Sorbet Typings in Changed Ruby Files by @kbukum1 in #12064
  • Update docker version to include digest if applicable - Fixed by @jpinz in #11977
  • Excluding the handled dependencies check for consecutive group updates by @thavaahariharangit in #12005
  • Fix Docker Compose Digest Handling for sha256 and Normal Digests by @kbukum1 in #12085
  • Fix Docker Compose Specs Related to Requirements Digest with Sha256 by @kbukum1 in #12086
  • v0.309.0 by @dependabot-core-action-automation in #12083

New Contributors

Full Changelog: v0.308.0...v0.309.0

Don't miss a new dependabot-core release

NewReleases is sending notifications on new releases.