gitlab dependabot-gitlab/dependabot v4.0.0-alpha.1
on GitLab

one day ago

4.0.0-alpha.1 (2026-01-10)

💥 Breaking changes (1 change)

  • Remove deprecated updates key in common configuration file by @andrcuns. See merge request dependabot-gitlab/dependabot!4272

⚠️ Security updates (2 changes)

  • [Security] Bump action_text-trix from 2.1.15 to 2.1.16 by @dependabot. See merge request dependabot-gitlab/dependabot!4312
  • [Security] Bump httparty from 0.23.2 to 0.24.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4288

🚀 New features (2 changes)

  • Add conda ecosystem support by @andrcuns. See merge request dependabot-gitlab/dependabot!4311
  • Migrate to postgresql and default rails stack by @andrcuns. See merge request dependabot-gitlab/dependabot!4256

🔬 Improvements (5 changes)

  • Include the project name in Kubernetes pod labels by @BageDevimo. See merge request dependabot-gitlab/dependabot!4262
  • Speed vulnerability db update job by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Update user if it exists via create_user rake task by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Improve logging for worker containers by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Split update rake task in to standalone and non-standalone counterparts by @andrcuns. See merge request dependabot-gitlab/dependabot!4256

🐞 Bug Fixes (8 changes)

  • fix: grouped dependency MRs superseding for standalone and service mode by @amalysh. See merge request dependabot-gitlab/dependabot!4310
  • Fix incorrect filtering of private registries when none are allowed by @andrcuns. See merge request dependabot-gitlab/dependabot!4304
  • Remove invalid chars from k8s pod project name label by @andrcuns. See merge request dependabot-gitlab/dependabot!4303
  • Use consistent job entry ordering in UI by @andrcuns. See merge request dependabot-gitlab/dependabot!4293
  • Correctly clear thread local run to avoid displaying other run log entries by @andrcuns. See merge request dependabot-gitlab/dependabot!4289
  • Fix incorrectly handles sentry_ignored_errors parameter by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Correctly handle named update configuration entries by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Prevent duplicate security vulnerability entry creation by @andrcuns. See merge request dependabot-gitlab/dependabot!4256

📦 Dependency updates (14 changes)

  • Bump vite_rails from 3.0.19 to 3.0.20 by @dependabot. See merge request dependabot-gitlab/dependabot!4320
  • Bump vite-plugin-ruby from 5.1.1 to 5.1.2 by @dependabot. See merge request dependabot-gitlab/dependabot!4318
  • Bump dependabot-omnibus from 0.355.0 to 0.356.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4316
  • Bump bcrypt from 3.1.20 to 3.1.21 by @dependabot. See merge request dependabot-gitlab/dependabot!4313
  • Bump pg from 1.6.2 to 1.6.3 by @dependabot. See merge request dependabot-gitlab/dependabot!4309
  • Bump dependabot-omnibus from 0.354.0 to 0.355.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4296
  • Bump dependabot-omnibus from 0.353.0 to 0.354.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4292
  • Bump default postgresql image version to 18.1 by @andrcuns.
  • Bump vite from 7.2.2 to 7.3.0 by @andrcuns. See merge request dependabot-gitlab/dependabot!4281
  • Bump tzinfo-data from 1.2025.2 to 1.2025.3 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4269
  • Bump good_job from 4.13.0 to 4.13.1 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4268
  • Bump bootsnap from 1.19.0 to 1.20.1 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4267
  • Chore(deps): bump sass from 1.97.0 to 1.97.1 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4264
  • Update docker dind image version to 29.1.3 by @andrcuns.

📦🔧 Development dependency updates (24 changes)

  • Bump solargraph from 0.58.0 to 0.58.1 by @dependabot. See merge request dependabot-gitlab/dependabot!4322
  • Bump rubocop-rails from 2.34.2 to 2.34.3 by @dependabot. See merge request dependabot-gitlab/dependabot!4321
  • Bump rubocop-rspec from 3.8.0 to 3.9.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4314
  • Bump @readme/openapi-parser from 5.4.0 to 5.5.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4315
  • Bump allure-report-publisher from 5.0.0-alpha.4 to 5.0.0-alpha.5 by @dependabot. See merge request dependabot-gitlab/dependabot!4307
  • Bump typescript-eslint from 8.51.0 to 8.52.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4306
  • Bump allure-report-publisher from 5.0.0-alpha.3 to 5.0.0-alpha.4 by @dependabot. See merge request dependabot-gitlab/dependabot!4305
  • Bump allure-report-publisher from 5.0.0-alpha.2 to 5.0.0-alpha.3 by @dependabot. See merge request dependabot-gitlab/dependabot!4301
  • Bump git from 4.0.6 to 4.1.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4300
  • Bump allure-playwright from 3.4.2 to 3.4.3 by @dependabot. See merge request dependabot-gitlab/dependabot!4299
  • Bump solargraph from 0.57.0 to 0.58.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4295
  • Bump globals from 16.5.0 to 17.0.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4294
  • Bump typescript-eslint from 8.50.0 to 8.51.0 by @dependabot. See merge request dependabot-gitlab/dependabot!4291
  • Bump allure-playwright from 3.4.2 to 3.4.3 by @dependabot. See merge request dependabot-gitlab/dependabot!4282
  • Bump rubocop-rails from 2.30.3 to 2.34.2 by @dependabot. See merge request dependabot-gitlab/dependabot!4276
  • Bump rubocop-performance from 1.24.0 to 1.26.1 by @dependabot. See merge request dependabot-gitlab/dependabot!4275
  • Bump rubocop from 1.81.7 to 1.82.1 by @dependabot. See merge request dependabot-gitlab/dependabot!4274
  • Bump debug from 1.11.0 to 1.11.1 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4270
  • Chore(deps-dev): bump vue from 3.5.25 to 3.5.26 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4263
  • Chore(deps-dev): bump @types/node from 25.0.2 to 25.0.3 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4260
  • chore(deps-dev): bump allure from 3.0.0-beta.27 to 3.0.0 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4254
  • chore(deps-dev): bump @types/node from 25.0.1 to 25.0.2 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4252
  • Bump eslint from 9.39.1 to 9.39.2 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4250
  • Bump @types/node from 25.0.0 to 25.0.1 by @dependabot-bot. See merge request dependabot-gitlab/dependabot!4249

🔧 CI changes (5 changes)

  • Add allure report publisher by @andrcuns. See merge request dependabot-gitlab/dependabot!4298
  • Remove allure report link creation task and code by @andrcuns. See merge request dependabot-gitlab/dependabot!4297
  • Ensure ruby static checks run on dep updates by @andrcuns. See merge request dependabot-gitlab/dependabot!4279
  • Use release-bot service account for release automation by @andrcuns. See merge request dependabot-gitlab/dependabot!4278
  • Switch dependabot updates to service account user by @andrcuns. See merge request dependabot-gitlab/dependabot!4271

🧰 Maintenance (11 changes)

  • Add production rails console by @andrcuns. See merge request dependabot-gitlab/dependabot!4286
  • Add logging context to log cleanup and cron scheduler jobs by @andrcuns. See merge request dependabot-gitlab/dependabot!4287
  • Update seeds file and migration job by @andrcuns. See merge request dependabot-gitlab/dependabot!4285
  • Enable new rubocop cops by default by @andrcuns. See merge request dependabot-gitlab/dependabot!4280
  • Remove unnecessary JobRemover class by @andrcuns. See merge request dependabot-gitlab/dependabot!4273
  • Reduce verbosity of worker container logs by @andrcuns. See merge request dependabot-gitlab/dependabot!4266
  • Lazy validate presence of gitlab_access_token by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Implement configurable retry for check_db task by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Add configurable db name to db_check task by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Add migration task to import mongodb export data by @andrcuns. See merge request dependabot-gitlab/dependabot!4256
  • Add db data export task for v4 migration preparation by @andrcuns. See merge request dependabot-gitlab/dependabot!4259

📄 Documentation updates (1 change)

  • Update docs for jobs dashboard page by @andrcuns. See merge request dependabot-gitlab/dependabot!4277

🚀 Deployment changes (3 changes)

  • Bump gitlab-org/cluster-integration/gitlab-agent/agentk in /deploy/agent by @dependabot. See merge request dependabot-gitlab/dependabot!4317
  • Bump gitlab-org/cluster-integration/gitlab-agent/agentk in /deploy/agent by @dependabot. See merge request dependabot-gitlab/dependabot!4290
  • Update deployment with values for postgresql database by @andrcuns. See merge request dependabot-gitlab/dependabot!4265
Check out latest releases or
releases around dependabot-gitlab/dependabot v4.0.0-alpha.1

Don't miss a new dependabot release

NewReleases is sending notifications on new releases.

Get notifications