You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@nuttx.apache.org by GitBox <gi...@apache.org> on 2022/06/19 01:30:11 UTC
[GitHub] [incubator-nuttx] naveensrinivasan opened a new pull request, #6472: chore: Included githubactions in the dependabot config
naveensrinivasan opened a new pull request, #6472:
URL: https://github.com/apache/incubator-nuttx/pull/6472
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.
Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot
GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <17...@users.noreply.github.com>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@nuttx.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [incubator-nuttx] xiaoxiang781216 commented on pull request #6472: chore: Included githubactions in the dependabot config
Posted by GitBox <gi...@apache.org>.
xiaoxiang781216 commented on PR #6472:
URL: https://github.com/apache/incubator-nuttx/pull/6472#issuecomment-1159602090
@naveensrinivasan should we update https://github.com/apache/incubator-nuttx-apps?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@nuttx.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [incubator-nuttx] naveensrinivasan commented on pull request #6472: chore: Included githubactions in the dependabot config
Posted by GitBox <gi...@apache.org>.
naveensrinivasan commented on PR #6472:
URL: https://github.com/apache/incubator-nuttx/pull/6472#issuecomment-1159604000
> @naveensrinivasan should we update https://github.com/apache/incubator-nuttx-apps?
I would say yes! There is some really cool stuff coming out of Dependabot. Things like this https://github.blog/2022-06-17-creating-comprehensive-dependency-graph-build-time-detection/
I know this doesn't apply to `c`. The critical issue is sometimes the low-hanging fruits IMO
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@nuttx.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [incubator-nuttx] xiaoxiang781216 merged pull request #6472: chore: Included githubactions in the dependabot config
Posted by GitBox <gi...@apache.org>.
xiaoxiang781216 merged PR #6472:
URL: https://github.com/apache/incubator-nuttx/pull/6472
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@nuttx.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org