You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by Colm O hEigeartaigh <co...@apache.org> on 2021/06/03 07:13:09 UTC
Re: Dependabot mails...
FYI Infra enabled dependabot alerts (just for security fixes, and not
the PRs) for Kerby, LDAP API + Directory Server. The alerts go to the
commiters of the project. That way we can at least be informed if a
dependency has a newly issued CVE.
Colm.
On Mon, May 31, 2021 at 1:09 PM Colm O hEigeartaigh <co...@apache.org> wrote:
>
> Hi,
>
> I just disabled dependabot, it is probably overkill for a project like
> Kerby anyway. Ideally I would have access to the "settings" part of
> the GitHub Dashboard for the project, where I could then configure
> alerts + PRs for security updates only, but I don't have access to it.
> I'll investigate to see if there is a way Infra can configure it for
> me.
>
> Colm.
>
> On Mon, May 31, 2021 at 10:32 AM Emmanuel Lécharny <el...@gmail.com> wrote:
> >
> > Hi
> >
> > is it possibkle to desactivate the dependabot mails? It's a bit annoying...
> >
> > --
> > *Emmanuel Lécharny - CTO* 205 Promenade des Anglais – 06200 NICE
> > T. +33 (0)4 89 97 36 50
> > P. +33 (0)6 08 33 32 61
> > emmanuel.lecharny@busit.com https://www.busit.com/
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: dev-unsubscribe@directory.apache.org
> > For additional commands, e-mail: dev-help@directory.apache.org
> >
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@directory.apache.org
For additional commands, e-mail: dev-help@directory.apache.org
Re: Dependabot mails...
Posted by Emmanuel Lécharny <el...@gmail.com>.
Okie, perfect, thanks !
On 03/06/2021 09:13, Colm O hEigeartaigh wrote:
> FYI Infra enabled dependabot alerts (just for security fixes, and not
> the PRs) for Kerby, LDAP API + Directory Server. The alerts go to the
> commiters of the project. That way we can at least be informed if a
> dependency has a newly issued CVE.
>
> Colm.
>
> On Mon, May 31, 2021 at 1:09 PM Colm O hEigeartaigh <co...@apache.org> wrote:
>>
>> Hi,
>>
>> I just disabled dependabot, it is probably overkill for a project like
>> Kerby anyway. Ideally I would have access to the "settings" part of
>> the GitHub Dashboard for the project, where I could then configure
>> alerts + PRs for security updates only, but I don't have access to it.
>> I'll investigate to see if there is a way Infra can configure it for
>> me.
>>
>> Colm.
>>
>> On Mon, May 31, 2021 at 10:32 AM Emmanuel Lécharny <el...@gmail.com> wrote:
>>>
>>> Hi
>>>
>>> is it possibkle to desactivate the dependabot mails? It's a bit annoying...
>>>
>>> --
>>> *Emmanuel Lécharny - CTO* 205 Promenade des Anglais – 06200 NICE
>>> T. +33 (0)4 89 97 36 50
>>> P. +33 (0)6 08 33 32 61
>>> emmanuel.lecharny@busit.com https://www.busit.com/
>>>
>>> ---------------------------------------------------------------------
>>> To unsubscribe, e-mail: dev-unsubscribe@directory.apache.org
>>> For additional commands, e-mail: dev-help@directory.apache.org
>>>
--
*Emmanuel Lécharny - CTO* 205 Promenade des Anglais – 06200 NICE
T. +33 (0)4 89 97 36 50
P. +33 (0)6 08 33 32 61
emmanuel.lecharny@busit.com https://www.busit.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@directory.apache.org
For additional commands, e-mail: dev-help@directory.apache.org