Replies: 2 comments 1 reply
-
|
see also: #6781 |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
This is somewhat mitigated by dependabot groups configuration https://docs.github.com/en/code-security/dependabot/working-with-dependabot/dependabot-options-reference#groups-- |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
thanks - I'm using renovatebot |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Are there any recommended mitigations in a node project to quiet down dependabot. The (imho too) frequent release schedule includes no-op changes to most of the modules. In less than a week, you can have 5 version numbers change over 5 packages and all of them have no relevant changes
If no mitigation, has there been thought to changing the versioning to not be global or perhaps a slower channel to subscribe to?
Beta Was this translation helpful? Give feedback.
All reactions