github dependabot/dependabot-core v0.332.0
on GitHub

12 hours ago

What's Changed

  • [Experiment] Simplify the building of Dependency Submission payloads to align with static parsers by @brrygrdn in #12990
  • improve tag name extractor by @brettfo in #13018
  • [Experiment][Cleanup] Remove per-file dependency list logic from Bundler, Go and NPM by @brrygrdn in #12997
  • Do not run Scorecard analysis from forks by @yeikel in #13006
  • Only run group updates when running multi ecosystem updates by @robaiken in #13005
  • Removing exclude_paths from dry-run by @robaiken in #13028
  • Bump Sorbet from 0.5.11952 to 0.5.12414 by @JamieMagee in #12862
  • Prefer Azure mirror for Ubuntu by @yeikel in #13023
  • Upgrade git and git-lfs by @yeikel in #13022
  • Conda security update delegation logic fix to address security update failures by @theztefan in #13026
  • v0.332.0 by @dependabot-core-action-automation[bot] in #13060

Full Changelog: v0.331.0...v0.332.0

Check out latest releases or
releases around dependabot/dependabot-core v0.332.0

Don't miss a new dependabot-core release

NewReleases is sending notifications on new releases.

Get notifications