github dependabot/dependabot-core v0.368.0
on GitHub

8 hours ago

What's Changed

  • Add package manager detection and enhance NoChangeError logging by @robaiken in #14539
  • Fix Incorrect Compare Link in Generated PR Body by @thavaahariharangit in #14531
  • Include PR title and body in update_pull_request API calls by @Copilot in #14492
  • Load nix ecosystem in updater setup by @JamieMagee in #14548
  • Fix invalid update to Pre-Commit dependencies with mixed versioning schemes by @AbhishekBhaskar in #14538
  • Fix crash with terraform modules using host:port sources by @jurre in #14541
  • Upgrade Erlang OTP major version to 27 by @vbalazs in #14485
  • fix broken pip-compile test by @jakecoffman in #14562
  • fix python fetching when environment markers present by @jakecoffman in #14559
  • Preserve npm workspace manifest updates in PR files by @thavaahariharangit in #14542
  • bundler cooldown feature; Remove GPR special-casing, add fallback for registries that don't support the necessary API endpoint by @jeffwidman in #14551
  • Bump brace-expansion from 1.1.11 to 1.1.13 in /bun/helpers/test/yarn/fixtures/conflicting-dependency-parser/deeply-nested by @dependabot[bot] in #14565
  • Bump brace-expansion in /npm_and_yarn/helpers by @dependabot[bot] in #14558
  • Bump brace-expansion from 1.1.12 to 1.1.13 in /npm_and_yarn/helpers/test/yarn/fixtures/conflicting-dependency-parser/deeply-nested by @dependabot[bot] in #14564
  • Bump brace-expansion from 1.1.11 to 1.1.13 in /npm_and_yarn/helpers/test/npm6/fixtures/conflicting-dependency-parser/deeply-nested by @dependabot[bot] in #14563
  • nix: fix permission denied on /nix/var/nix/db/big-lock by @JamieMagee in #14568
  • fix: Handle Excon::Error::Socket in RegistryClient and PackageDetailsFetcher by @markhallen in #14557
  • hex: add regression test for Hex.Repo.get_public_key/1 tuple order by @Copilot in #14407
  • fix Python update when the same dependency appears multiple times with different extras by @jakecoffman in #14578
  • feat: update Xcode pbxproj for Swift SPM by @markhallen in #14587
  • fix(conda): don't treat compound version constraints as fully qualified specs by @thavaahariharangit in #14586
  • [python][pip-compile] Fix constraint files (-c) in .in files not being fetched by @Copilot in #14588
  • Fix pre-commit tag prefix matching for monorepos with mixed tag prefixes by @AbhishekBhaskar in #14582
  • Add support for update-types in allow block by @Copilot in #12925
  • pip: Warn when ownership changes by @martincostello in #14235
  • terraform: handle private/unresolvable providers during lockfile updates by @jurre in #14585
  • Fix Python MetadataFinder leaking private package names to public PyPI by @jurre in #14590
  • Promote Nix ecosystem from beta to GA by @JamieMagee in #14597
  • Fix allow update-types filtering for individual dependency updates by @kbukum1 in #14598
  • v0.368.0 by @dependabot-core-action-automation[bot] in #14604

New Contributors

Full Changelog: v0.367.0...v0.368.0

Check out latest releases or
releases around dependabot/dependabot-core v0.368.0

Don't miss a new dependabot-core release

NewReleases is sending notifications on new releases.

Get notifications